Linux ip-172-26-7-228 5.4.0-1103-aws #111~18.04.1-Ubuntu SMP Tue May 23 20:04:10 UTC 2023 x86_64
Apache
: 172.26.7.228 | : 3.23.101.241
Cant Read [ /etc/named.conf ]
5.6.40-24+ubuntu18.04.1+deb.sury.org+1
www-data
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
HASH IDENTIFIER
README
+ Create Folder
+ Create File
/
var /
www /
html /
gug /
PHP /
[ HOME SHELL ]
Name
Size
Permission
Action
Sample_PhP_Code
[ DIR ]
drwxr-xr-x
PHP-Algorithm.txt
6.62
KB
-rwxr-xr-x
Delete
Unzip
Zip
${this.title}
Close
Code Editor : PHP-Algorithm.txt
function actionInput() { $checksumkey = 'axis'; $encryption_key = 'axisbank12345678'; $aesJava = new AesForJava(); if (!empty($_POST['CID']) && !empty($_POST['RID']) && !empty($_POST['CRN']) && !empty($_POST['AMT']) && !empty($_POST['VER']) && !empty($_POST['TYP']) && !empty($_POST['CNY']) && !empty($_POST['RTU']) && !empty($_POST['PPI'])) { $paramArr = array(); foreach ($_POST as $key => $val) { if ($key != "easyTkn") { $paramArr[] = $key . "=" . $val; } } } else { $paramArr = array( "CID=1162", "RID=121", "CRN=21100018", "AMT=1.0", "VER=1.0", "TYP=test", "CNY=INR", "RTU=https://uat-etendering.axisbank.co.in/easypay2.0/frontend/api/output?urldecode=1", "PPI=test1|asd|test|29/04/2015|8097520469|rajas.vyas@tejora.com|1", "RE1=", "RE2=", "RE3=", "RE4=", "RE5=", ); } $chksm = ""; for ($i = 0; $i < 4; $i++) { $valarr = explode("=", $paramArr[$i]); $chksm .= $valarr[1]; } /*all post variables with thier values stored in $paramArray variable*/ /* all post values concatenated in $chksm variable */ /* hash() function creates hash of post values and key by using sha256 algorithm */ $paramArr[] = "CKS=" . hash("sha256", $chksm .$checksumkey ); $i = $aesJava->encrypt(implode("&", $paramArr),$encryption_key , 128); $this->render("sampleForm", array('data' => $i, 'action' => 'payment')); } <?php class AesForJava { const M_CBC = 'cbc'; const M_CFB = 'cfb'; const M_ECB = 'ecb'; const M_NOFB = 'nofb'; const M_OFB = 'ofb'; const M_STREAM = 'stream'; protected $key; protected $cipher; protected $data; protected $mode; protected $IV; /** * * @param type $data * @param type $key * @param type $blockSize * @param type $mode */ function __construct($data = null, $key = null, $blockSize = null, $mode = null) { $this->setData($data); $this->setKey($key); $this->setBlockSize($blockSize); $this->setMode($mode); $this->setIV(""); } /** * * @param type $data */ public function setData($data) { $this->data = $data; } /** * * @param type $key */ public function setKey($key) { $this->key = $key; } /** * * @param type $blockSize */ public function setBlockSize($blockSize) { switch ($blockSize) { case 128: $this->cipher = MCRYPT_RIJNDAEL_128; break; case 192: $this->cipher = MCRYPT_RIJNDAEL_192; break; case 256: $this->cipher = MCRYPT_RIJNDAEL_256; break; } } /** * * @param type $mode */ public function setMode($mode) { switch ($mode) { case AesForJava::M_CBC: $this->mode = MCRYPT_MODE_CBC; break; case AesForJava::M_CFB: $this->mode = MCRYPT_MODE_CFB; break; case AesForJava::M_ECB: $this->mode = MCRYPT_MODE_ECB; break; case AesForJava::M_NOFB: $this->mode = MCRYPT_MODE_NOFB; break; case AesForJava::M_OFB: $this->mode = MCRYPT_MODE_OFB; break; case AesForJava::M_STREAM: $this->mode = MCRYPT_MODE_STREAM; break; default: $this->mode = MCRYPT_MODE_ECB; break; } } /** * * @return boolean */ public function validateParams() { if ($this->data != null && $this->key != null && $this->cipher != null) { return true; } else { return FALSE; } } public function setIV($IV) { $this->IV = $IV; } protected function getIV() { if ($this->IV == "") { $this->IV = mcrypt_create_iv(mcrypt_get_iv_size($this->cipher, $this->mode), MCRYPT_RAND); } return $this->IV; } /** * @return type * @throws Exception */ public function encrypt($data = null, $key = null, $blockSize = null, $mode = null) { $this->setData($data); $this->setKey($key); $this->setBlockSize($blockSize); $this->setMode($mode); $this->setIV(""); // $padded_data = $this->pkcs5_pad($this->data); if ($this->validateParams()) { return trim(base64_encode( mcrypt_encrypt( $this->cipher, $this->key, $this->pkcs5_pad($this->data), $this->mode, $this->getIV()))); } else { throw new Exception('Invlid params!'); } } /** * * @return type * @throws Exception */ public function decrypt($data = null, $key = null, $blockSize = null, $mode = null) { // echo $data; $this->setData(trim($data)); // echo "<br/>".$this->data; exit; // $this->setData($data); $this->setKey($key); $this->setBlockSize($blockSize); $this->setMode($mode); $this->setIV(""); if ($this->validateParams()) { //echo base64_decode($this->data); exit; $depcryptedStr = trim(mcrypt_decrypt($this->cipher, $this->key, base64_decode($this->data), $this->mode, $this->getIV())); $unpaddedStr = $this->pkcs5_unpad(utf8_encode($depcryptedStr)); //$unpaddedStr = $this->pkcs5_unpad(utf8_encode(trim(mcrypt_decrypt( // $this->cipher, $this->key, base64_decode($this->data), $this->mode, $this->getIV())))); if ($unpaddedStr) { return $unpaddedStr; } else { return $depcryptedStr; } } else { throw new Exception('Invlid params!'); } } function pkcs5_pad ($text, $blocksize=16){ $pad = $blocksize - (strlen($text) % $blocksize); return $text . str_repeat(chr($pad), $pad); } function pkcs5_unpad ($text) { $pad = ord($text{strlen($text)-1}); if ($pad > strlen($text)) { return false; } if (strspn($text, chr($pad), strlen($text) - $pad) != $pad) { return false; } return substr($text, 0, -1 * $pad); } }
Close
