Well, well… Isn’t that cool? I got my hands on another nice PHP hacking script. This time it is called “w4ck1ng-shell (Private Build v0.3)“. And this has something new:
$my_agent = "Defaced";
$user_agent = $_SERVER['HTTP_USER_AGENT'];
if($user_agent != $my_agent) {
$fake_image = "iVBORw0K . . . ggg==";
header("Content-type: image/png");
die(base64_decode($fake_image));
}else{ };
This will result in this nice little picture:
So, the script requires a special user-agent to display the shell itself. Tricky, eh? The rest of the script is straight forward and if you ask nicely and promise to only use it for research/educational use, you can have it.
Oh, and “synsta@gmail.com” should be blocked or hacked. He must have got some nice emails.
If you have other shells, please send them to me. It is always fun to take a look at them.
Update 23:29pm: Do not do a Google Search for “w4ck1ng-shell intitle:”shell@”“
Popularity: 12% [?]
Geek. 
Your code doesn’t work! Please explain it properly
@mantra
this is not my code. I have nothing to do with it. If you want to use it, it is up to you to make it work, kiddy.
alrite…Thank’s
If you checked, that email doesn’t log what you do, but you can enable logging of ftp brute forcing, $log_email is used as a default value for this field (stupid idea i know)
Can i have rest of this code plz… i promise to onlyuse it for research…
whats the script used for???
i am sorry i have no idea what that looks like…just know its PHP
can anyone exlain what its used to do?
This was coded by thedefaced.org.
The shell was originally c99, the w4ck1ng remake was done by synsta and h3 after which it was stolen by pretty much everyone (g00ns, gny etc).
So no tw0, it was coded by w4ck1ng.com members. (Or ex members should i say).
@stitches
thank you very much for that clarification.
How do you stop this thing!!!
It’s destroying my website. I need help.