![[Image: mpret.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_vmBF4-aEG80JnMLC1l50CGkSm4HZw2V9-0IAaLvPWSADUtQZEONE02B0HNnGF5W1iQG6KEk6fSARWp60JJGthctLa46yuHCaRFpsbxHQ=s0-d)
User : admin
Password : password
Live demo : http://www.k4mpr3t.ml/shell/
Download : Here
Function Adding at Services.php
<?php
error_reporting(0);
require('rpc.php');
if(function_exists('xdebug_disable')) { xdebug_disable(); }
class admin {
static $login_documentation = "login to the server (return token)";
public function login($user, $passwd) {
if (strcmp($user, 'admin') == 0 && strcmp($passwd, 'password') == 0) {
return md5($user . ":" . $passwd);
} else {
throw new Exception("Wrong Password");
}
}
static $ls_documentation = "list directory if token is valid";
public function ls($token, $path = null) {
if (strcmp(md5("admin:password"), $token) == 0) {
if (preg_match("/\.\./", $path)) {
throw new Exception("No directory traversal Dude");
}
$base = preg_replace("/(.*\/).*/", "$1", $_SERVER["SCRIPT_FILENAME"]);
$path = $base . ($path[0] != '/' ? "/" : "") . $path;
$dir = opendir($path);
while($name = readdir($dir)) {
$fname = $path."/".$name;
if (!is_dir($name) && !is_dir($fname)) {
$list[] = $name;
}
}
closedir($dir);
return $list;
} else {
throw new Exception("Access Denied");
}
}
static $whoami_documentation = "return user information";
public function whoami() {
return array("your User Agent" => $_SERVER["HTTP_USER_AGENT"],
"your IP" => $_SERVER['REMOTE_ADDR']);
}
// START EDIT
static $tambahan_documentation = "apa aja boleh";
public function tambahan() {
return array("apa" , "aja", "boleh");
}
// USE COMMAND > tambahan
// OUPUT COMMAND > apa aja boleh
// CMIIW :D
// END EDIT
}
handle_json_rpc(new admin());
?>
Reference : http://terminal.jcubic.pl/
Source : Forum devilzc0de | http://devilzc0de.org/forum/
0 comment:
Posting Komentar